ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Live Comment Preview Plugin <= 2.0.2 - Cross Site Scripting

Product
Live Comment Preview
Description
This plugin is prone to a comment field preview cross site scripting vulnerability.
Solution
Upgrade the plugin.
Classification
Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
References
CVE
Name CVE-N/A
Versions
Affected In <= 2.0.2
Fixed In 2.0.3
Disclosure date
2015-05-15