Title: [Plugin: WP Related Posts] ALERT: Vulnerabilities {Fixed] Last modified: August 19, 2016 --- # [Plugin: WP Related Posts] ALERT: Vulnerabilities {Fixed] * [Joe Banks](https://wordpress.org/support/users/empathik/) * (@empathik) * [15 years, 2 months ago](https://wordpress.org/support/topic/plugin-wp-related-posts-wordpress-related-posts-plugin-multiple-cross-site-scripting-vulnerabilities/) * 11.13.21 CVE: CVE-2011-0760 * Platform: Web Application – Cross Site Scripting * Title: WordPress Related Posts Plugin Multiple Cross-Site Scripting Vulnerabilities * Description: Related Posts is a plugin for WordPress. WordPress is a web-based publishing application. The application is exposed to multiple cross-site scripting issues because it fails to sufficiently sanitize user-supplied input. Related Posts version 1.0 is affected. * Ref: [http://wordpress.org/extend/plugins/wp-related-posts/](http://wordpress.org/extend/plugins/wp-related-posts/) * Source: [http://www.sans.org/newsletters/risk/](http://www.sans.org/newsletters/risk/) Viewing 5 replies - 1 through 5 (of 5 total) * [henrisalo](https://wordpress.org/support/users/henrisalo/) * (@henrisalo) * [14 years, 6 months ago](https://wordpress.org/support/topic/plugin-wp-related-posts-wordpress-related-posts-plugin-multiple-cross-site-scripting-vulnerabilities/#post-1998271) * Has this been fixed yet? * [henrisalo](https://wordpress.org/support/users/henrisalo/) * (@henrisalo) * [14 years, 6 months ago](https://wordpress.org/support/topic/plugin-wp-related-posts-wordpress-related-posts-plugin-multiple-cross-site-scripting-vulnerabilities/#post-1998272) * [http://osvdb.org/show/osvdb/74892](http://osvdb.org/show/osvdb/74892) [http://secunia.com/advisories/43777](http://secunia.com/advisories/43777) [http://archives.neohapsis.com/archives/fulldisclosure/2011-03/0205.html](http://archives.neohapsis.com/archives/fulldisclosure/2011-03/0205.html) * Plugin Author [nessus](https://wordpress.org/support/users/nessus/) * (@nessus) * [14 years, 5 months ago](https://wordpress.org/support/topic/plugin-wp-related-posts-wordpress-related-posts-plugin-multiple-cross-site-scripting-vulnerabilities/#post-1998279) * Has been updated. * [henrisalo](https://wordpress.org/support/users/henrisalo/) * (@henrisalo) * [14 years, 5 months ago](https://wordpress.org/support/topic/plugin-wp-related-posts-wordpress-related-posts-plugin-multiple-cross-site-scripting-vulnerabilities/#post-1998280) * Version 1.1 Security update. Added XSS and CSRF protection. * [Mark (podz)](https://wordpress.org/support/users/podz/) * (@podz) * [14 years, 5 months ago](https://wordpress.org/support/topic/plugin-wp-related-posts-wordpress-related-posts-plugin-multiple-cross-site-scripting-vulnerabilities/#post-1998281) * Title edited. Viewing 5 replies - 1 through 5 (of 5 total) The topic ‘[Plugin: WP Related Posts] ALERT: Vulnerabilities {Fixed]’ is closed to new replies. * ![](https://s.w.org/plugins/geopattern-icon/wp-related-posts.svg) * [WP Related Posts](https://wordpress.org/plugins/wp-related-posts/) * [Frequently Asked Questions](https://wordpress.org/plugins/wp-related-posts/#faq) * [Support Threads](https://wordpress.org/support/plugin/wp-related-posts/) * [Active Topics](https://wordpress.org/support/plugin/wp-related-posts/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/wp-related-posts/unresolved/) * [Reviews](https://wordpress.org/support/plugin/wp-related-posts/reviews/) ## Tags * [xss](https://wordpress.org/support/topic-tag/xss/) * 5 replies * 4 participants * Last reply from: [Mark (podz)](https://wordpress.org/support/users/podz/) * Last activity: [14 years, 5 months ago](https://wordpress.org/support/topic/plugin-wp-related-posts-wordpress-related-posts-plugin-multiple-cross-site-scripting-vulnerabilities/#post-1998281) * Status: not resolved