CVE-2017-18012
N/A
N/A
Summary
The Z-URL Preview plugin 1.6.1 for WordPress has XSS via the class.zlinkpreview.php url parameter.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://wpvulndb.com/vulnerabilities/8990
- https://plugins.svn.wordpress.org/z-url-preview/trunk/readme.txt
- https://packetstormsecurity.com/files/145218/WordPress-Z-URL-Preview-1.6.1-Cross-Site-Scripting.html
- https://wordpress.org/plugins/z-url-preview/#developers
- https://wordpress.org/support/topic/z-url-preview-1-6-1-cross-site-scripting/
References
- https://wpvulndb.com/vulnerabilities/8990
- https://plugins.svn.wordpress.org/z-url-preview/trunk/readme.txt
- https://packetstormsecurity.com/files/145218/WordPress-Z-URL-Preview-1.6.1-Cross-Site-Scripting.html
- https://wordpress.org/plugins/z-url-preview/#developers
- https://wordpress.org/support/topic/z-url-preview-1-6-1-cross-site-scripting/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.