Vulnerabilities > Andrew Killen > Share AND Follow > 1.80.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2012-05-21 | CVE-2012-2917 | Cross-Site Scripting vulnerability in Andrew Killen Share and Follow 1.80.3 Cross-site scripting (XSS) vulnerability in the Share and Follow plugin 1.80.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the CDN API Key (cnd-key) in a share-and-follow-menu page to wp-admin/admin.php. | 4.3 |