CVE-2016-10706

CVE-2016-10706

The Jetpack plugin before 4.0.3 for WordPress has XSS via a crafted Vimeo link.

Source: CVE-2016-10706