Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackPaul LoftnessPATCHSTACK:75920551A232F756AA0FE5380E9268D6
HistoryOct 31, 2011 - 12:00 a.m.

WordPress Classipress Theme <= 3.1.4 - Stored XSS

2011-10-3100:00:00
Paul Loftness
patchstack.com
9

EPSS

0.002

Percentile

60.9%

JSON

Classipress theme is prone to a stored cross-site scripting vulnerability because of input failure through the POST parameters ‘facebook_id’ and ‘twitter_id’ in a registered user’s profile page. It allows an attacker to inject Javascript code.

Solution

           Update the theme.

Related

cvelist 1
wpvulndb 1
nvd 1
prion 1
exploitdb 1
cve 1
cvelist
cvelist
CVE-2011-5257
2013-02-12 20:00:00
wpvulndb
wpvulndb
Classipress <= 3.1.4 - Stored XSS
2014-08-01 10:59:18
nvd
nvd
CVE-2011-5257
2013-02-12 20:55:01
prion
prion
Cross site scripting
2013-02-12 20:55:00
exploitdb
exploitdb
WordPress Theme classipress 3.1.4 - Persistent Cross-Site Scripting
2011-10-31 00:00:00
cve
cve
CVE-2011-5257
2013-02-12 20:55:01

EPSS

0.002

Percentile

60.9%

JSON
Related for PATCHSTACK:75920551A232F756AA0FE5380E9268D6
cvelist1wpvulndb1nvd1prion1exploitdb1cve1