Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) discovered by Satyender Yadav in WordPress VikRentCar plugin (versions <= 1.1.6).
Update the WordPress VikRentCar plugin to the latest available version (at least 1.1.7).
CPE | Name | Operator | Version |
---|---|---|---|
vikrentcar | le | 1.1.6 |