WordPress Druco <= 1.5.2 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Druco versions = 1.5.2...

WordPress Druco Theme <= 1.5.2 is vulnerable to Cross Site Scripting (XSS)

Software Druco Type Theme Vulnerable versions = 1.5.2 Fixed in 1.5.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2025-54055 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5fecdac8e286 Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber...