VYPR

Press This

by WordPress

Source repositories

CVEs (2)

  • CVE-2017-5610MedJan 30, 2017
    risk 0.28cvss 5.3epss 0.05

    wp-admin/includes/class-wp-press-this.php in Press This in WordPress before 4.7.2 does not properly restrict visibility of a taxonomy-assignment user interface, which allows remote attackers to bypass intended access restrictions by reading terms.

  • CVE-2014-9035Nov 25, 2014
    risk 0.00cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in Press This in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.