Vulnerable

  • Resolved espressivo

    (@espressivo)


    1 year, 2 months ago

    We get this report:

    Category:PLUGIN

    Versions-Affected:<= 2.5.11

    Type:Cross Site Scripting

    Severity:HIGH

    Description:Rafie Muhammad (Patchstack) discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Flash & HTML5 Video Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has not been known to be fixed yet.

Viewing 1 replies (of 1 total)
  • Plugin Author shehabulislam

    (@shehabulislam)

    Hi

    We have also reviewed this report. The plugin version mentioned is 4.5.0, but our plugin’s latest version is 2.5.11.

Viewing 1 replies (of 1 total)
  • The topic ‘Vulnerable’ is closed to new replies.