WordPress Easy PayPal Events plugin <= 1.1.1 - Reflected Cross-Site Scripting (XSS) vulnerability

2021-10-1100:00:00

WPScanTeam

patchstack.com

Reflected Cross-Site Scripting (XSS) vulnerability discovered by WPScanTeam in WordPress Easy PayPal Events plugin (versions <= 1.1.1).

Solution

           Update the WordPress Easy PayPal Events plugin to the latest available version (at least 1.1.2).

CPENameOperatorVersion
easy paypal eventsle1.1.1

CPE	Name	Operator	Version
	easy paypal events	le	1.1.1

wordpress.org/plugins/easy-paypal-events-tickets/#description

wpscan.com/vulnerability/34ea00d1-3f45-4550-9d22-5a966e9c01b9