Description
The moodlenetprofile user profile field required extra sanitizing to prevent a stored XSS risk. This affects versions 3.9 to 3.9.1. Fixed in 3.9.2.
Remediation
References
Related Vulnerabilities
WordPress Plugin Ooorl Cross-Site Scripting (1.0.0)
WordPress Plugin WordPress Automatic Security Bypass (3.53.2)
WordPress Plugin WP-SpamFree Anti-Spam 'id' Parameter SQL Injection (3.2.1)
MySQL CVE-2012-1688 Vulnerability (CVE-2012-1688)
WordPress Plugin Smart Slider 3 PRO Cross-Site Scripting (3.5.0.8)