CVE-2016-11001 – User Submitted Posts < 20160215 - Reflected Cross-Site Scripting

https://notcve.org/view.php?id=CVE-2016-11001

The user-submitted-posts plugin before 20160215 for WordPress has XSS via the user-submitted-content field. El plugin user-submitted-posts versiones anteriores a 20160215 para WordPress, presenta una vulnerabilidad de tipo XSS por medio del campo user-submitted-content. • https://wordpress.org/plugins/user-submitted-posts/#developers https://www.securityfocus.com/archive/1/537616/30/0/threaded • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •