43 matches found
CVE-2015-9320
The option-tree plugin before 2.5.4 for WordPress has XSS related to addqueryarg...
CVE-2016-10895
The option-tree plugin before 2.6.0 for WordPress has XSS via an addlistitem or addsociallinks AJAX request...
PT-2019-7279 · WordPress · Option-Tree
Name of the Vulnerable Software and Affected Versions: option-tree plugin versions prior to 2.5.4 Description: The issue is related to a Cross-Site Scripting XSS problem in the add query arg function. Recommendations: For versions prior to 2.5.4, update to version 2.5.4 or later to resolve the...