The WP-Hijri plugin for WordPress is vulnerable to a type of cyber attack called Cross-Site Scripting. This means that in versions 1.5.1 and below of the plugin, attackers could inject malicious code on webpages that would run without users knowing. This type of attack could be done without the attackers having to authenticate themselves.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
