CVE-2018-5362
The CVE-2018-5362 entry concerns the WPGlobus WordPress plugin (version 1.9.6) with a Stored XSS vulnerability: an attacker can inject script via the wpglobus_option[post_type][page] parameter sent to wp-admin/options.php. This is a cross-site scripting flaw in the plugin’s handling of option dat...