VYPR
Medium severity6.1NVD Advisory· Published Dec 25, 2018· Updated Jun 17, 2026

CVE-2018-20462

CVE-2018-20462

Description

An issue was discovered in the JSmol2WP plugin 1.07 for WordPress. A cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML via the jsmol.php data parameter.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.