Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by Krishna Harsha Kondaveeti in WordPress Google Places Reviews plugin (versions <= 1.5.2).
Fixed in version 2.0.0, but has been closed as of April 8, 2022 and is not available for download. This closure is temporary, pending a full review. Deactivate and delete.
CPE | Name | Operator | Version |
---|---|---|---|
google places reviews | le | 1.5.2 |