Cross-site scripting (XSS) vulnerability in Peter’s Random Anti-Spam Image 0.2.4 and earlier plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the comment field in the comment form.
CPE | Name | Operator | Version |
---|---|---|---|
random_anti-spam_image | le | 0.2.4 |