Security for everyone

CVE-2017-18493 Scanner

Detects 'Cross-Site Scripting (XSS)' vulnerability in Custom Admin Page plugin for WordPress affects v. before 0.1.2.


Short Info




Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Domain, Ipv4

Parent Category

CVE-2017-18493 Scanner Detail

The Custom Admin Page plugin for WordPress is a widely used tool that serves the purpose of creating custom pages within the WordPress admin panel. It allows users to design and implement their own custom settings and configurations for their WordPress websites. The plugin is typically used by developers and website owners who wish to enhance their website's functionality and create a unique experience for their audience.

One vulnerability that has been detected in this plugin is CVE-2017-18493. This issue allows an attacker to inject malicious code into the plugin's settings page, which can then lead to the execution of a cross-site scripting (XSS) attack. This means that an attacker can use this vulnerability to inject harmful code into a website, which can then be executed by unsuspecting users.

The exploitation of this vulnerability can lead to multiple negative outcomes for users, businesses, and website owners. For example, attackers can steal sensitive information, such as usernames and passwords, through XSS attacks. They can also redirect users to malicious websites, install malware onto their devices, or even take control of their systems.

In conclusion, the Custom Admin Page plugin for WordPress is a useful tool for website owners and developers, but it is essential to be aware of potential vulnerabilities, such as CVE-2017-18493. By taking appropriate precautions and using security tools like the ones offered by, website owners can protect their digital assets and ensure the safety of their users' data.



cyber security services for everyone one. Free security tools, continuous vulnerability scanning and many more.
Try it yourself,
control security posture