The Simple Iframe WordPress plugin prior to 1.2.0 does not properly validate one of its WordPress block attribute's content, which may allow users whose role is at least that of a contributor to conduct Stored Cross-Site Scripting attacks.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
simple iframe project simple iframe |