3 matches found
CVE-2017-18503
The twitter-cards-meta plugin before 2.5.0 for WordPress has XSS...
CVE-2017-18503
The twitter-cards-meta plugin before 2.5.0 for WordPress has XSS...
CVE-2017-18503
The CVE-2017-18503 entry concerns the WordPress Twitter Cards Meta plugin (pre-2.5.0). The connected sources confirm a cross-site scripting (XSS) vulnerability in versions prior to 2.5.0 caused by insufficient validation of client-side data. Impact described as enabling attacker‑controlled script...