Because of these vulnerabilities, the attackers can inject arbitrary web script or HTML to wp-admin/options.php via the 3 parameters: “thanks_caption”, “thanks_caption_style” or “thanks_style”.
Update the plugin.
CPE | Name | Operator | Version |
---|---|---|---|
thank you counter button | le | 1.8.7 |