Medium severity6.1NVD Advisory· Published Oct 2, 2018· Updated Jun 17, 2026
CVE-2018-17884
CVE-2018-17884
Description
XSS exists in admin/gb-dashboard-widget.php in the Gwolle Guestbook (gwolle-gb) plugin before 2.5.4 for WordPress via the PATH_INFO to wp-admin/index.php
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <2.5.4
Patches
Vulnerability mechanics
References
3- www.defensecode.com/advisories/DC-2018-05-008_WordPress_Gwolle_Guestbook_Plugin_Advisory.pdfnvdExploitThird Party Advisory
- seclists.org/bugtraq/2018/Jul/74nvdExploitMailing ListThird Party Advisory
- wordpress.org/plugins/gwolle-gb/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.