WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plug-in. Cross-site scripting vulnerabilities exist in versions of WordPress AdRotate plugin prior to 5.8.23. The vulnerability stems from a failure to escape group names and can be exploited by a highly privileged attacker to execute JavaScript code.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress adrotate plugin | lt | 5.8.23 |