WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. cross-site scripting vulnerability exists in versions prior to WordPress Goolytics 1.1.2. The vulnerability stems from not cleaning and escaping some of its settings, even when the unfiltered_html feature is disabled and high privileges such as administrator An attacker could use the vulnerability to inject cross-site code and launch an XSS attack.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress goolytics | lt | 1.1.2 |