3 matches found
CVE-2016-10920
The gnucommerce plugin before 0.5.7-BETA for WordPress has XSS...
CVE-2016-10920
The gnucommerce plugin before 0.5.7-BETA for WordPress has XSS...
CVE-2016-10920
CVE-2016-10920 concerns the WordPress plugin gnucommerce prior to version 0.5.7-BETA, which contains a cross-site scripting (XSS) vulnerability in its handling of user input. Multiple sources across NVD/Red Hat/CNVD/CVE records confirm an XSS risk in this plugin version, potentially allowing an a...