A Cross-Site Scripting (XSS) vulnerability found by Neorichi in WordPress Z-URL Preview plugin (versions <= 1.6.2). Vulnerable to Cross-Site Scripting via the class.zlinkpreview.php url parameter.
Update the WordPress Z-URL Preview plugin to the latest available version (at least 2.0.0).
CPE | Name | Operator | Version |
---|---|---|---|
z-url preview | le | 1.6.2 |