Vulnerabilities for Easy custom auto excerpt (...) - CXSECURITY.COM

Vulnerabilities for 'Easy custom auto excerpt'

2018-01-09

CVE-2018-5311

CWE-79

The Easy Custom Auto Excerpt plugin 2.4.6 for WordPress has XSS via the tonjoo_ecae_options[custom_css] parameter to the wp-admin/admin.php?page=tonjoo_excerpt URI.

>>> Vendor: Tonjoostudio 2 Products

Easy custom auto excerpt

Fluid-responsive-slideshow

Copyright 2024, cxsecurity.com