Vulnerabilities > WEB Dorado > WD Instagram Feed > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-04-23 CVE-2018-10301 Cross-site Scripting vulnerability in Web-Dorado WD Instagram Feed
Cross-site scripting (XSS) vulnerability in the Web-Dorado Instagram Feed WD plugin before 1.3.1 Premium for WordPress allows remote attackers to inject arbitrary web script or HTML by passing payloads in a comment on an Instagram post.
network
low complexity
web-dorado CWE-79
6.1
2018-04-23 CVE-2018-10300 Cross-site Scripting vulnerability in Web-Dorado WD Instagram Feed
Cross-site scripting (XSS) vulnerability in the Web-Dorado Instagram Feed WD plugin before 1.3.1 for WordPress allows remote attackers to inject arbitrary web script or HTML by passing payloads in an Instagram profile's bio.
network
low complexity
web-dorado CWE-79
6.1