Recently Closed WordPress Plugin With 400,000+ Installs Contains Another Authenticated Persistent XSS Vulnerability

Back in April we ran across an authenticated persistent cross-site scripting (XSS) vulnerability in WP Google Maps after our monitoring of the WordPress Support Forum to keep track of publicly known vulnerabilities that have been in plugins customers of our service might be using, led to us coming across a claim that WPEngine was claiming there was an XSS vulnerability in it.

Source: Recently Closed WordPress Plugin With 400,000+ Installs Contains Another Authenticated Persistent XSS Vulnerability

LONZO, Austria – WordPress Services and Hosting
 
info@lonzo.eu / 0800 80 08 80 566 (Austria) / +49 8654 60 85 66 (Europe)

Partners Security Contact System Status

© 2017-2019 LONZO – All rights reserved. Terms of use Privacy policy