CVE-2016-10705 – Jetpack <= 4.0.3 - Cross-Site Scripting

https://notcve.org/view.php?id=CVE-2016-10705

The Jetpack plugin before 4.0.4 for WordPress has XSS via the Likes module. El plugin Jetpack en versiones anteriores a la 4.0.4 para WordPress tiene XSS mediante el módulo Likes. • https://jetpack.com/2016/06/20/jetpack-4-0-4-bug-fixes https://wpvulndb.com/vulnerabilities/8517 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •