CVE-2019-15837 – WebP Express <= 0.14.10 - Authenticated Stored Cross-Site Scripting

https://notcve.org/view.php?id=CVE-2019-15837

The webp-express plugin before 0.14.8 for WordPress has stored XSS. El plugin webp-express anterior a la versión 0.14.8 para WordPress ha almacenado XSS. • https://wordpress.org/plugins/webp-express/#developers https://wpvulndb.com/vulnerabilities/9389 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •