7 matches found
CVE-2023-25961
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Catch Themes Darcie theme = 1.1.5 versions...
EUVD-2023-29848
Malicious code in bioql PyPI...
Cross site scripting
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Catch Themes Darcie theme = 1.1.5 versions...
CVE-2023-25961 WordPress Darcie Theme <= 1.1.5 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Catch Themes Darcie theme = 1.1.5 versions...
CVE-2023-25961
CVE-2023-25961 is an unauthenticated, reflected cross-site scripting (XSS) vulnerability in Catch Themes’ Darcie WordPress theme, affecting versions up to 1.1.5. The issue is triggered through user-supplied input reflected in the page, enabling an attacker to execute script in the victim’s browse...
WordPress theme Darcie 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
WordPress Darcie Theme <= 1.1.5 is vulnerable to Cross Site Scripting (XSS)
Software Darcie Type Theme Vulnerable versions = 1.1.5 Fixed in 1.1.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25961 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 213da94cc277 Credits MyungJu Kim Required privilege...