Cross-Site Scripting attack

  • Resolved aman789

    (@aman789)


    2 years, 5 months ago

    The plugin does not escape some of its shortcode’s attributes, which could allow users with a role as low as a contributor to perform Stored Cross-Site Scripting attacks

Viewing 1 replies (of 1 total)
  • Plugin Author Imtiaz Rayhan

    (@imtiazrayhan)

    Hi,

    I have released an update with the fixes for the issues.

    Please update the plugin to the latest version.

    Kind regards.

Viewing 1 replies (of 1 total)
  • The topic ‘Cross-Site Scripting attack’ is closed to new replies.