3 matches found
CVE-2017-18530
The rating-bws plugin before 0.2 for WordPress has multiple XSS issues...
CVE-2017-18530
The rating-bws plugin before 0.2 for WordPress has multiple XSS issues...
CVE-2017-18530
CVE-2017-18530 covers the WordPress rating-bws plugin prior to version 0.2, which contains multiple cross-site scripting (XSS) flaws. The core issue is insufficient validation of client-side data, enabling an attacker to execute arbitrary JavaScript in victims’ browsers (potentially stealing sess...