Re: [FD] Font_Organizer 2.1.1 - Reflected XSS (WordPress Plugin)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Tue, Feb 05, 2019 at 04:26:09PM +0100, Tim Coen wrote: > https://security-consulting.icu/blog/2019/02/wordpress-font-organizer-xss/ Please use CVE-2019-9908. - -- Henri Salo -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEE/aVSDznAZReWTkxKJ633pE6

[FD] Font_Organizer 2.1.1 - Reflected XSS (WordPress Plugin)

* Vulnerability: XSS * Affected Software: [Font_Organizer](https://wordpress.org/plugins/font-organizer/) * Affected Version: 2.1.1 * Patched Version: none * CVE: not requested * Risk: Medium * Vendor Contacted: 10/25/2018 * Vendor Fix: none * Public Disclosure: 02/05/2019 * Cre