Cross-Site Scripting Vulnerability in Icegram Plugin for WordPress
CVE-2019-15830
5.4MEDIUM
What is CVE-2019-15830?
The Icegram plugin for WordPress prior to version 1.10.29 is susceptible to a Cross-Site Scripting (XSS) vulnerability. This issue arises from improper handling of input data, allowing attackers to inject malicious scripts. If exploited, this vulnerability can lead to unauthorized actions and data exposure on affected WordPress sites, emphasizing the critical importance of applying timely updates and security patches.