WordPress Aoi Tori plugin <= 1.1 - Reflected Cross-Site Scripting (XSS) vulnerability

2021-08-0900:00:00

WPScanTeam

patchstack.com

Reflected Cross-Site Scripting (XSS) vulnerability discovered by iohex and WPScanTeam in WordPress Aoi Tori plugin (versions <= 1.1).

Solution

           2021-08-25 - no patched version is available. Deactivate and delete.

CPENameOperatorVersion
aoi torile1.1

CPE	Name	Operator	Version
	aoi tori	le	1.1

wordpress.org/plugins/aoi-tori/

wpscan.com/vulnerability/a88ffc42-6611-406e-8660-3af24c9cc5e8