WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress Donations via PayPal plugin version 1.9.9 has a cross-site scripting vulnerability that stems from failure to clean and escape certain settings, including the disabled unfiltered_html feature, which can be exploited by a highly privileged attacker such as an administrator to launch a stored cross-site scripting attack. attacker can use the vulnerability to launch a stored cross-site scripting attack.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress donations via paypal plugin | lt | 1.9.9 |