VYPR
Medium severity5.4NVD Advisory· Published Sep 14, 2020· Updated Jun 17, 2026

CVE-2020-25380

CVE-2020-25380

Description

Wordpress Plugin Store / Mike Rooijackers Recall Products V0.8 is affected by: Cross Site Scripting (XSS) via the 'Recall Settings' field in admin.php. An attacker can inject JavaScript code that will be stored and executed.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.