Beta

Report

WHIZZ <= 1.0.7 is vulnerable to Cross Site Scripting

Unauthenticated
Published
2016-04-12

Reflected XSS in wordpress plugin whizz v1.0.7 via plugin parameter.

CVE

https://www.cve.org/CVERecord?id=CVE-2016-1000154

CVSS

Score:6.1

Severity:Medium

Version: 1.0.7

There is a patch available in v1.0.8 and we strongly recommend you update to this version as soon as possible.