ThreatPress

WordPress Vulnerability Database

Back

WordPress PageLayer plugin <= 1.3.4 - Reflected Cross_site Scripting (XSS) vulnerability

Product
PageLayer
Description
Reflected Cross_site Scripting (XSS) vulnerability found by WordFence Threat Intelligence team in WordPress PageLayer plugin (versions <= 1.3.4).
Solution
Update the WordPress PageLayer plugin to the latest available version (at least 1.3.5).
Classification
Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
References
Vulnerability details
Plugin changelog
CVE
Name CVE-N/A
Versions
Affected In <= 1.3.4
Fixed In 1.3.5
Disclosure date
2020-12-10
Credits
WordFence