Description
Cross-site scripting (XSS) vulnerability in Peter's Random Anti-Spam Image 0.2.4 and earlier plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the comment field in the comment form.
Remediation
References
Related Vulnerabilities
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5113)
WordPress Plugin WP-UserOnline Cross-Site Scripting (2.88.0)
WordPress Plugin Nextend Facebook Connect Unspecified Vulnerability (1.5.7)
Java Unspesificed Vulnerability (CVE-2018-3139)
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-10086)