The BulletProof Security WordPress plugin prior to 6.1 does not sanitize and escape some of its CAPTCHA settings, which could allow high-privileged users to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ait-pro bulletproof security |