ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Amazon Affiliate Link Localizer Plugin <= 1.8.2 - XSS

Product
Amazon Affiliate Link Localizer
Description
This plugin is prone to a cross site scripting vulnerability in amazon_affiliate_link_localizer.php amzn_com parameter.
Solution
Update the plugin.
Classification
Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
References
DFCode
CVE
Name CVE-N/A
Versions
Affected In <= 1.8.2
Fixed In 1.8.3
Disclosure date
2014-08-01