WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress Cloudways Breeze plugin 2.0.2 and earlier versions have a cross-site scripting vulnerability that can be exploited by attackers to execute any wp_ajax_* operation in the Breeze_ Configuration class, including the ability to change the settings of any plugin, including CDN settings that can be further used for cross-site scripting attacks.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress cloudways breeze plugin | le | 2.0.2 |