WordPress WP Taxonomy Import plugin <= 1.0.4 - Reflected Cross-Site Scripting (XSS) vulnerability

2022-08-2200:00:00

kaikaix

patchstack.com

wordpress

taxonomy

import

EPSS

0.001

Percentile

40.2%

JSON

Reflected Cross-Site Scripting (XSS) vulnerability discovered by kaikaix in WordPress WP Taxonomy Import plugin (versions <= 1.0.4).

Solution

Deactivate and delete. This plugin has been closed as of August 5, 2022 and is not available for download. This closure is temporary, pending a full review.

References

wpscan.com/vulnerability/792d9f22-abf6-47b2-a247-d0cdb705cd81

EPSS

0.001

Percentile

40.2%

JSON

Related for PATCHSTACK:3ABCB8D3537555573A399F5617A97B64