Cross-site scripting (XSS) vulnerability in the Terillion Reviews plugin prior to 1.2 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the ProfileId field.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
terillion terillion_reviews_plugin |