CVE-2018-5668
CVE-2018-5668 affects the WordPress plugin read-and-understood version 2.1. A cross-site scripting vulnerability exists in the GET/POST parameter rnu_username_validation_title used by wp-admin/options-general.php, allowing injected script when processed by the plugin. Connected sources indicate a...