ThreatPress

WordPress Vulnerabilities Database

Back

WordPress amtyThumb posts plugin 8.1.3 - Unauthenticated Cross-Site Scripting (XSS) vulnerability

Product
amtyThumb posts
Description
Unauthenticated Cross-Site Scripting (XSS) vulnerability found in WordPress amtyThumb posts plugin (version 8.1.3).
Solution
02.12.2017 - no information about the patched version. The last version released one year ago. Looks like abandoned plugin, use with caution, or uninstall.
Classification
Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
References
Plugin changelog
CVE
Name CVE-2017-17059
Versions
Affected In 8.1.3
Disclosure date
2017-12-02
Submitter
ThreatPress