The Semalt Blocker plugin for WordPress is not secure in versions up to 1.1.3. Attackers with access to the administrator settings can inject their own web scripts into pages. This means that anyone who visits a page with an injected script will have it run on their computer. This issue only affects WordPress installations with multiple sites or with disabled HTML filtering.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
