CVE-2016-10900
CVE-2016-10900 affects the WordPress plugin uji-countdown prior to version 2.0.7, introducing a cross-site scripting (XSS) vulnerability. Public sources consistently describe XSS without detailing the exploit path beyond the vulnerable plugin/version. The NVD notes a CVSS base of 6.1 (MEDIUM) (AV...