CVE-2017-18520 - OpenCVE

The democracy-poll plugin before 5.4 for WordPress has XSS via update_l10n in admin/class.DemAdminInit.php.

No CVSS v3.1

AV:N/AC:M/Au:N/C:N/I:P/A:N

Vendors	Products
Wp-kama	Democracy Poll

Configuration 1 [-]

cpe:2.3:a:wp-kama:democracy_poll:*:*:*:*:*:wordpress:*:*

References

Link	Resource
https://wordpress.org/plugins/democracy-poll/#developers	Release Notes
https://www.pluginvulnerabilities.com/2017/02/22/cross-site-request-forgery-csrfcross-site-scripting-xss-vulnerability-in-democracy-poll/	Broken Link

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2019-08-20T14:52:29

Updated: 2019-08-20T14:52:28

Reserved: 2019-08-15T00:00:00

Link: CVE-2017-18520

JSON object: View

NVD Information

Status : Analyzed

Published: 2019-08-20T15:15:11.933

Modified: 2019-08-22T17:09:27.563

Link: CVE-2017-18520

JSON object: View

Redhat Information

No data.

CWE