XSS Vulnerability in E-goi Smart Marketing Plugin for WordPress

XSS Vulnerability in E-goi Smart Marketing Plugin for WordPress

CVE-2017-18010 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

The E-goi Smart Marketing SMS and Newsletters Forms plugin before 2.0.0 for WordPress has XSS via the admin/partials/custom/egoi-for-wp-form_egoi.php url parameter.

Learn more about our Wordpress Pen Testing.