3 matches found
WordPress Easy Digital Downloads Reviews extension cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Easy Digital Downloads EDD Reviews extension is a FAQ plugin used in it. A cross-site scripting vulnerability exists in the WordPress...
CVE-2015-9526
The CVE refers to WordPress Easy Digital Downloads (EDD) Reviews extension. Vulnerable components are the EDD Reviews extension across multiple tracked versions (EDD 1.8.x before 1.8.7; 1.9.x before 1.9.10; 2.0.x before 2.0.5; 2.1.x before 2.1.11; 2.2.x before 2.2.9; 2.3.x before 2.3.7) due to mi...
CVE-2015-9526
The Easy Digital Downloads EDD Reviews extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because addqueryarg is misused...