Vulnerabilities > Brafton > Brafton > 3.4.7

DATE CVE VULNERABILITY TITLE RISK
2019-09-16 CVE-2016-10973 Cross-site Scripting vulnerability in Brafton
The Brafton plugin before 3.4.8 for WordPress has XSS via the wp-admin/admin.php?page=BraftonArticleLoader tab parameter to BraftonAdminPage.php.
network
brafton CWE-79
4.3
4.3