Cross Scripting Vulnerability
-
Consistently get warnings about this plugin having a cross-scripting vulnerability. I have Cooked Pro installed but cannot deactivate this plugin as Cooked Pro won’t work without it.
Can you please look into this. Details of vulnerability identified by Solid Security Basic (formerly WordFence) are as follows:
WordPress Cooked plugin <= 1.7.13 – Cross Site Scripting (XSS) vulnerability
Powered by
6.5
Medium Severity
CVSS 3.1 score
Not known to be exploited
Solution
No fix has been released for this vulnerability.
If no update is available, you should deactivate the plugin. Muting the issue will exclude it from future scans. Only mute the issue after you’ve confirmed the vulnerability does not affect your site.
Details
Cross Site Scripting (XSS) vulnerability discovered by thiennv (Patchstack Alliance) in WordPress Plugin Cooked (versions <= 1.7.13)
- The topic ‘Cross Scripting Vulnerability’ is closed to new replies.