WordPress is a set of blogging platform developed using PHP language. File Upload is one of the file upload plugins used in it. WordPress plugin is an application plugin. The vulnerability is caused by the vulnerable parameters &post_title, &downloadable_file_version[0]. An attacker could exploit this vulnerability to perform cross-site scripting attacks.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress download monitor | le | 4.4.6 |