WordPress plugin is a WordPress application plugin. WordPress Ultimate Reviews plugin 3.0.15 and earlier versions contain a cross-site scripting vulnerability that stems from the lack of proper validation of client-side data by the WEB application. An attacker could exploit this vulnerability to perform cross-site scripting attacks.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress ultimate reviews | le | 3.0.15 |