Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by Ngo Van Thien (Patchstack Alliance) in WordPress History Timeline plugin (versions <= 1.0.5).
Deactivate and delete. No reply from the vendor.
CPE | Name | Operator | Version |
---|---|---|---|
history timeline | le | 1.0.5 |