14 matches found
CVE-2023-2813
All of the above Aapna WordPress theme through 1.3, Anand WordPress theme through 1.2, Anfaust WordPress theme through 1.1, Arendelle WordPress theme before 1.1.13, Atlast Business WordPress theme through 1.5.8.5, Bazaar Lite WordPress theme before 1.8.6, Brain Power WordPress theme through 1.2,...
CVE-2024-1866
Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-2813. Reason: This candidate is a duplicate of CVE-2023-2813. Notes: All CVE users should reference CVE-2023-2813 instead of this candidate. All references and descriptions in this candidate have been removed to preven...
CVE-2024-1865
Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-2813. Reason: This candidate is a duplicate of CVE-2023-2813. Notes: All CVE users should reference CVE-2023-2813 instead of this candidate. All references and descriptions in this candidate have been removed to preven...
CVE-2024-1864
Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-2813. Reason: This candidate is a duplicate of CVE-2023-2813. Notes: All CVE users should reference CVE-2023-2813 instead of this candidate. All references and descriptions in this candidate have been removed to preven...
CVE-2023-2813
All of the above Aapna WordPress theme through 1.3, Anand WordPress theme through 1.2, Anfaust WordPress theme through 1.1, Arendelle WordPress theme before 1.1.13, Atlast Business WordPress theme through 1.5.8.5, Bazaar Lite WordPress theme before 1.8.6, Brain Power WordPress theme through 1.2,...
CVE-2023-2813
CVE-2023-2813 describes a reflected XSS in multiple WordPress themes (e.g., Aapna, Anand, Anfaust, Arendelle, etc.) up to varying versions (as listed in the description). The issue arises from the search box reflecting results, allowing an unauthenticated attacker to lure users into clicking a ma...
WordPress Anand Theme <= 1.2 is vulnerable to Cross Site Scripting (XSS)
Software Anand Type Theme Vulnerable versions = 1.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2813 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ce14093d4551 Credits Random Robbie Required privilege...
WordPress Cafe Bistro Theme < 1.1.4 is vulnerable to Cross Site Scripting (XSS)
Software Cafe Bistro Type Theme Vulnerable versions 1.1.4 Fixed in 1.1.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2813 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3a3a8d627eab Credits Random Robbie Required...
WordPress Aapna Theme <= 1.3 is vulnerable to Cross Site Scripting (XSS)
Software Aapna Type Theme Vulnerable versions = 1.3 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2813 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f88968b9b9e0 Credits Random Robbie Required privilege...
WordPress Bazaar Lite Theme <= 1.8.5 is vulnerable to Cross Site Scripting (XSS)
Software Bazaar Lite Type Theme Vulnerable versions = 1.8.5 Fixed in 1.8.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2813 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d9553f419d38 Credits Random Robbie Required...
WordPress Arendelle Theme <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)
Software Arendelle Type Theme Vulnerable versions = 1.1.2 Fixed in 1.1.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2813 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 60b127840762 Credits Random Robbie Required...
WordPress BunnyPressLite Theme < 2.1 is vulnerable to Cross Site Scripting (XSS)
Software BunnyPressLite Type Theme Vulnerable versions 2.1 Fixed in 2.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2813 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID db16b7871c30 Credits Random Robbie Required...
WordPress Brain Power Theme <= 1.2 is vulnerable to Cross Site Scripting (XSS)
Software Brain Power Type Theme Vulnerable versions = 1.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2813 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1eb52f5b8792 Credits Random Robbie Required...
WordPress College Theme < 1.5.1 is vulnerable to Cross Site Scripting (XSS)
Software College Type Theme Vulnerable versions 1.5.1 Fixed in 1.5.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2813 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e88325519596 Credits Random Robbie Required...