WordPress Manual Image Crop Plugin <= 1.10

Back

WordPress Manual Image Crop Plugin <= 1.10 - Cross Site Scripting

Product: Manual Image Crop
Description: Because of this vulnerability, the attackers can inject arbitrary web script or HTML.
Solution: Update this plugin.
Classification: Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
References: Cinu
CVE: Name CVE-N/A
Versions: Affected In <= 1.10
Fixed In 1.11
Disclosure date: 2015-08-24
Credits: Marcin Probola
Submitter: ThreatPress