CVE-2017-17096

Published: 2017-12-03T19:29Z

Last Modified: 2024-11-21T03:17Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Cross-site scripting (XSS) vulnerability in the Content Cards plugin before 0.9.7 for WordPress allows remote attackers to inject arbitrary JavaScript via crafted OpenGraph data. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt