The PWGRandom plugin 1.11 and earlier for WordPress has multiple security issues that could allow remote attackers to take control of an administrator’s account. This could be done by using the pwgrandom_title or pwgrandom_category parameter on the pwgrandom page of wp-admin/options-general.php. This could lead to a cross-site scripting attack.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
