The User Activity Log Pro WordPress plugin prior to 2.3.4 does not properly escape recorded User-Agents in the user activity logs dashboard, which may allow visitors to conduct Stored Cross-Site Scripting attacks.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
solwininfotech user activity log |