The Video Lessons Manager WordPress plugin prior to 1.7.2 and Video Lessons Manager Pro WordPress plugin prior to 3.5.9 do not properly sanitize and escape values when updating their settings, which could allow high privilege users to perform Cross-Site Scripting attacks
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
creativemindssolutions video lessons manager |
||
creativemindssolutions video lessons manager pro |