The Awesome Feed – Custom Feed plugin for WordPress is vulnerable to a security issue. If a user clicks on a link, it could allow someone who is not authenticated (not approved by the website) to inject web scripts into pages. This security issue is present in all versions up to and including 2.2.5 and is caused by not properly sanitizing input or properly escaping output.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
