CVE-2017-15811
The CVE-2017-15811 entry concerns the Pootle Button plugin for WordPress, affecting versions before 1.2.0 with a Cross-Site Scripting (XSS) flaw. The vulnerability is triggered by the assets_url parameter in assets/dialog.php and is exploitable via wp-admin/admin-ajax.php, allowing an attacker to...