Cross-site scripting (XSS) vulnerability in inc/raf_form.php in the Recommend to a friend plugin 2.0.2 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the current_url parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
recommend_to_a_friend_project recommend_to_a_friend 2.0.2 |