CVE-2018-5214
The CVE-2018-5214 entry describes a Cross‑Site Scripting (XSS) vulnerability in the WordPress Add Link to Facebook plugin, affecting versions up to 2.3. The issue is triggered via the al2fb_facebook_id parameter passed to wp-admin/profile.php, enabling XSS. Exploitation status is not detailed in ...