Report
Cross-site scripting (XSS) vulnerability in picasa_upload.php in the WP-Picasa-Image plugin 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the post_id parameter.
Score:6.1
Severity:Medium
Version: 1.0
There is a patch available in v1.1 and we strongly recommend you update to this version as soon as possible.
