← Back to CVE List
CVE-2017-15811
Published:
2017-10-23T17:29Z
Last Modified:
2024-11-21T03:15Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
The Pootle Button plugin before 1.2.0 for WordPress has XSS via the assets_url parameter in assets/dialog.php, exploitable via wp-admin/admin-ajax.php. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt