logo
DATABASE RESOURCES PRICING ABOUT US

WordPress Bulk Change plugin <= 1.0 - Authenticated Reflected Cross-Site Scripting (XSS) vulnerability

Description

Authenticated Reflected Cross-Site Scripting (XSS) vulnerability found by ZeroAptitude in WordPress Bulk Change plugin (versions <= 1.0). ## Solution 2020-09-16 - we were unable to find a patched version of this plugin. WordPress.org notification: "This plugin has been closed as of June 19, 2020 and is not available for download. Reason: Security Issue."


Affected Software


CPE Name Name Version
bulk change 1.0