First published: Tue Aug 20 2019(Updated: )
The user-role plugin before 1.5.6 for WordPress has multiple XSS issues.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Bestwebsoft User Role Wordpress | <1.5.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2017-18566 is a vulnerability in the user-role plugin before 1.5.6 for WordPress that allows for multiple XSS (Cross-Site Scripting) issues.
CVE-2017-18566 has a severity rating of 6.1 (medium).
CVE-2017-18566 affects Bestwebsoft User Role version up to exclusive 1.5.6.
To fix CVE-2017-18566, update to version 1.5.6 or higher of the user-role plugin for WordPress.
You can find more information about CVE-2017-18566 on the official WordPress plugin page: https://wordpress.org/plugins/user-role/#developers