The Anthologize plugin for WordPress is not secure in versions up to 0.8.0. It can be used by attackers with administrator-level access to inject web scripts into pages that will run when users visit them. This is possible because the plugin does not properly check the input it receives or escape the output it produces.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
