Vulnerabilities

CVE-2020-14063

by Fred · 21/07/2020

A stored Cross-Site Scripting (XSS) vulnerability in the TC Custom JavaScript plugin before 1.2.2 for WordPress allows unauthenticated remote attackers to inject arbitrary JavaScript via the tccj-content parameter. This is displayed in the page footer of every front-end page and executed in the browser of visitors.

Date published : 2020-07-21

TC Custom JavaScript

High Severity Vulnerability Patched in TC Custom JavaScript

Similar

Tags: Cybersecurity Alert