First published: Tue Aug 13 2019(Updated: )
The htaccess plugin before 1.7.6 for WordPress has multiple XSS issues.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Bestwebsoft Htaccess Wordpress | <1.7.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2017-18496 is medium (6.1).
The affected software for CVE-2017-18496 is the htaccess plugin before version 1.7.6 for WordPress.
The Common Weakness Enumeration (CWE) for CVE-2017-18496 is CWE-79 (Cross-Site Scripting).
To fix CVE-2017-18496, update to version 1.7.6 or later of the htaccess plugin for WordPress.
You can find more information about CVE-2017-18496 on the WordPress plugin page for the htaccess plugin.