Medium severity6.1NVD Advisory· Published Jan 13, 2018· Updated Jun 17, 2026
CVE-2018-5654
CVE-2018-5654
Description
An issue was discovered in the weblizar-pinterest-feeds plugin 1.1.1 for WordPress. XSS exists via the wp-admin/admin-ajax.php PFFREE_Access_Token parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=1.1.1+ 1 more
- (no CPE)range: <=1.1.1
- (no CPE)range: =1.1.1
Patches
Vulnerability mechanics
References
2- github.com/d4wner/Vulnerabilities-Report/blob/master/weblizar-pinterest-feeds.mdnvdExploitThird Party Advisory
- wpvulndb.com/vulnerabilities/9009nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.