The VK All in One Expansion Unit plugin for WordPress has an issue that makes it possible for someone to inject malicious code into pages on websites that use this plugin. This issue affects versions up to and including 9.87.0.1 and can be exploited by someone trying to trick a user into clicking a link. This only works on older browsers.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
