2 matches found
WordPress WPML Plugin <= 3.1.8 - XSS
This vulnerability allows an attacker to inject arbitrary web script or HTML via the "target" parameter in a reminderpopup action to the default URI. Solution Update the plugin...
WordPress plugin WPML cross-site scripting vulnerability
WordPress is a use of PHP language development blog platform, users can support PHP and MySQL database server set up their own weblog. A cross-site scripting vulnerability exists in the WordPress plugin WPML, which allows remote attackers to inject arbitrary web script or HTML via the reminderpop...