The Planaday API plugin for WordPress has a security issue that allows attackers to inject harmful web scripts into pages. This can happen if someone clicks on a link and the attacker successfully tricks them into taking an action. This vulnerability affects all versions up to 11.4 and is caused by not properly checking and filtering the input and output.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
