Vulnerabilities > Webcraftic > Woody AD Snippets > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-09-13 | CVE-2019-16289 | Cross-site Scripting vulnerability in Webcraftic Woody AD Snippets The insert-php (aka Woody ad snippets) plugin before 2.2.8 for WordPress allows authenticated XSS via the winp_item parameter. | 5.4 |