[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fytgaN4QOJ1xZkDpeRkgao3oeU_HcwLRALW8-s5nv6Ws":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"CVE-2015-9515","easy-digital-downloads-htaccess-editor-reflected-cross-site-scripting","Easy Digital Downloads – htaccess Editor \u003C 1.0.1 - Reflected Cross-Site Scripting","The Easy Digital Downloads (EDD) htaccess Editor extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused.","easy-digital-downloads-htaccess-editor",null,">=1.0.0 \u003C=1.0.0","1.0.1","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2015-04-20 00:00:00","2024-01-22 19:56:02",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F090c1ba1-1b73-4c83-a17f-993293c5621b?source=api-prod",3200]