WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. cross-site scripting vulnerability exists in versions of WordPress Simple File List prior to 4.4.12. The vulnerability stems from inadequate clearing and escaping of its settings, which can be exploited by a highly privileged attacker to inject cross-site code and launch XSS attacks.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress simple file list | lt | 4.4.12 |