The Progress Bar tool for WordPress has a security issue known as Stored Cross-Site Scripting, which exists in versions 2.2.3 and earlier. This is because the tool does not properly clean data input and output, leaving it open to attacks. This means that hackers with contributor or higher access can add harmful scripts to pages that will run when someone opens that page.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
