Multiple cross-site scripting (XSS) vulnerabilities in the Activity Log plugin before 2.4.1 for WordPress allow remote attackers to inject arbitrary JavaScript or HTML via a title that is not escaped.
Metrics
Affected Vendors & Products
References
History
Thu, 14 Nov 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-03-15T17:00:00
Updated: 2024-11-14T20:48:12.262Z
Reserved: 2018-03-15T00:00:00
Link: CVE-2018-8729
Vulnrichment
Updated: 2024-08-05T07:02:26.030Z
NVD
Status : Modified
Published: 2018-03-15T17:29:00.210
Modified: 2024-11-21T04:14:13.517
Link: CVE-2018-8729
Redhat
No data.