Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Enej Bajgoric / Gagan Sandhu / CTLT DEV User Avatar plugin <= 1.4.11 versions.
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "user-avatar",
"product": "User Avatar",
"vendor": "Enej Bajgoric / Gagan Sandhu / CTLT DEV",
"versions": [
{
"lessThanOrEqual": "1.4.11",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]