Vulnerabilities > Ultimate Instagram Feed Project > Ultimate Instagram Feed

DATE CVE VULNERABILITY TITLE RISK
2017-11-09 CVE-2017-16758 Cross-site Scripting vulnerability in Ultimate Instagram Feed Project Ultimate Instagram Feed
Cross-site scripting (XSS) vulnerability in admin/partials/uif-access-token-display.php in the Ultimate Instagram Feed plugin before 1.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the "access_token" parameter.
3.5