Security for everyone

CVE-2017-18566 Scanner

Detects 'Cross-Site Scripting (XSS)' vulnerability in User Role plugin for WordPress affects v. before 1.5.6.


Short Info



Single Scan

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Domain, Ipv4



The User Role plugin for WordPress is a popular tool used by website administrators to manage and assign roles and permissions to users within their WordPress site. With this plugin, administrators can easily customize the capabilities of each user, from viewing pages and posts to publishing content and managing the entire site. 

However, CVE-2017-18566 has been detected and identified as a serious vulnerability in the User Role plugin, which can expose websites to XSS attacks. This vulnerability arises from a lack of input validation that allows attackers to gain access to the website's user database and potentially steal sensitive information or compromise the site's integrity.

Exploiting this vulnerability can lead to a range of consequences for website owners and users. Attackers can inject malicious code into the site, leading to unauthorized access and stealing of user data. They can also use this vulnerability to deface the website, bring it down for maintenance, or even use it to launch attacks on other websites.

Thanks to the pro features of the platform, those who read this article can quickly and easily learn about vulnerabilities in their digital assets. This platform offers comprehensive security testing solutions that can detect security flaws, help prioritize remediation efforts, and provide guidance on how to fix any issues found. By using this platform, website owners can ensure that their WordPress site remains secure and protected against vulnerabilities like CVE-2017-18566.



cyber security services for everyone one. Free security tools, continuous vulnerability scanning and many more.
Try it yourself,
control security posture