WordPress Platinum SEO Plugin <= 1.3.7 - XSS

2013-09-1900:00:00

Charlie Briggs

patchstack.com

EPSS

0.001

Percentile

49.0%

Because of this vulnerability in platinum_seo_pack.php, the attackers can inject arbitrary web script or HTML via the “s” parameter.

Solution

           Update the plugin.

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5918

EPSS

0.001

Percentile

49.0%

Related for PATCHSTACK:7361F47C15995E489FA4B0042FC4F9F0