CVE-2018-16204

CVE-2018-16204

EPSS 0.7%

Cross-site scripting vulnerability in Google XML Sitemaps Version 4.0.9 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected products

Arne Brachhold · Google XML Sitemaps

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://jvn.jp/en/jp/JVN27052429/index.html https://wordpress.org/plugins/google-sitemap-generator/#developers