Vulnerabilities > Brafton

DATE CVE VULNERABILITY TITLE RISK
2019-09-16 CVE-2016-10973 Cross-site Scripting vulnerability in Brafton
The Brafton plugin before 3.4.8 for WordPress has XSS via the wp-admin/admin.php?page=BraftonArticleLoader tab parameter to BraftonAdminPage.php.
network
low complexity
brafton CWE-79
6.1