CVE-2017-18499
The CVE-2017-18499 entry affects the WordPress Simple Membership plugin (pre-3.5.7). The root cause is an XSS flaw in the plugin’s handling of client-side data without proper validation, enabling injection of client-side scripts. The impact is cross-site scripting within WordPress sites using thi...