The yolink Search for WordPress plugin is susceptible to a type of cyber attack called Cross-Site Scripting (XSS) in versions prior to 2.6. This is because the plugin does not properly protect against malicious code being inserted into the website. Attackers can use this vulnerability to inject malicious code that can be executed in a visitor’s browser.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
