WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

360 Product Rotation <= 1.4.7 - Reflected XSS

Description

The 360 Product Rotation WordPress plugin was affected by a Reflected XSS security vulnerability.

Affects Plugins

360-product-rotation
Fixed in version 1.4.8

References

CVE
CVE-2019-15082
URL
https://plugins.trac.wordpress.org/changeset?reponame=&new=2113823%40360-product-rotation&old=2075319%40360-product-rotation

Classification

Type

XSS

OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Original Researcher

ImplosionSec

Verified

No

WPVDB ID
82d99104-86b3-449d-9529-286f24902d42

Timeline

Publicly Published

2019-06-27 (about 3 years ago)

Added

2019-06-28 (about 3 years ago)

Last Updated

2020-09-22 (about 2 years ago)

Our Other Services

WPScan WordPress Security Plugin