The Wow Skype Buttons plugin for WordPress is vulnerable to a type of cyber attack called Reflected Cross-Site Scripting. This type of attack is possible because the plugin did not properly secure the ‘page’ parameter in versions 4.0.1 and earlier. Without the necessary security measures, attackers can inject malicious code to web pages, which can run if a user clicks a link.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
