First published: Tue Aug 20 2019(Updated: )
The promobar plugin before 1.1.1 for WordPress has multiple XSS issues.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Bestwebsoft Promobar Wordpress | <1.1.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2017-18529 is a vulnerability in the promobar plugin for WordPress that allows for multiple XSS (Cross-Site Scripting) attacks.
The severity of CVE-2017-18529 is rated as medium, with a severity value of 6.1.
CVE-2017-18529 affects WordPress by allowing attackers to execute malicious scripts on vulnerable websites.
Yes, there is a fix available for CVE-2017-18529. Users should update to version 1.1.1 of the promobar plugin for WordPress to mitigate this vulnerability.
For more information about CVE-2017-18529, you can refer to the official WordPress plugin page at https://wordpress.org/plugins/promobar/#developers.