ThreatPress

WordPress Vulnerabilities Database

Back

WordPress MiniMax Plugin <= 2.0.2 - Cross Site Scripting

Product
MiniMax
Description
This vulnerability is in ./page-layout-builder/includes/layout-settings.php.
Solution
Update the plugin.
Classification
Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
References
Vapid
CVE
Name CVE-N/A
Versions
Affected In <= 2.0.2
Fixed In 2.0.3
Disclosure date
2016-04-12
Credits
Larry W. Cashdollar
Submitter
ThreatPress