WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. cross-site scripting vulnerability exists in versions prior to WordPress plugin Logo Slider 3.6.0, which stems from the fact that some of its shortcode properties are not validated and escaped before being output back to the page. No details of the vulnerability are currently available.