CVE-2015-10075

Name of the Vulnerable Software and Affected Versions Custom-Content-Width version 1.0

Description A vulnerability was found in Custom-Content-Width, affecting the function override content width/register settings of the file custom-content-width.php. This issue leads to cross-site scripting and can be launched remotely. The complexity of an attack is rather high, and the exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. It is noted that this attack is not very likely.

Recommendations For Custom-Content-Width version 1.0, upgrade to version 1.0.1 to address this issue. As a temporary workaround, consider disabling the override content width/register settings function until the patch is applied.