CVE-2016-10952

The quotes-collection plugin before 2.0.6 for WordPress has XSS via the wp-admin/admin.php?page=quotes-collection page parameter...

CVE-2016-10952

The CVE relates to the WordPress Quotes Collection plugin (versions before 2.0.6). Multiple sources in connected documents confirm a Cross-Site Scripting (XSS) vulnerability exposed via the wp-admin/admin.php?page=quotes-collection parameter. This indicates a reflected XSS condition where user-su...