- User Submitted Posts
- Because of this vulnerability, users with "unfiltered_html" capability are allowed to include JS code to post content.
- Update the plugin.
Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
- Name CVE-N/A
Fixed In 20160215
- Disclosure date