CVE-2021-36872

Published September 23rd, 2021

View on NVD ↗

CVSS v3

5.5

MEDIUM

CVSS v2

3.5

LOW

Affected

PROJECT

Description

Authenticated Persistent Cross-Site Scripting (XSS) vulnerability in WordPress Popular Posts plugin (versions <= 5.3.3). Vulnerable at &widget-wpp[2][post_type].

cabrerahector/wordpress-popular-posts

WP Popular Posts - A highly customizable WordPress widget that displays your most popular posts.

GitHub

282