|Impact:||Cross-site Scripting (XSS)|
|Software:||WordPress Relevanssi Plugin 3.x , vulnerable versions: <3.3.8|
A cross-site scripting vulnerability was found in WordPress Relevanssi Plugin.
Vulnerability is caused by an unspecified input validation error. A remote attacker can send a specially crafted HTTP request to the vulnerable application and execute arbitrary html and scripting code in user`s browser in context of a vulnerable website.
Further exploitation of this vulnerability may result in stealing potentially sensitive to the user information, such as cookies, or disguising the information presented on the website.
For WordPress Relevanssi Plugin 3.x: Update to version 3.3.8.