99 matches found
WordPress Enfold Theme 4.8.3 Cross Site Scripting
Exploit Title: WordPress Theme Enfold 4.8.3 - Reflected Cross-Site Scripting XSS Google Dork: "inurl:avia-element-paging" Date: 18/10/2021 Exploit Author: Francisco Díaz-Pache Alonso, Sergio Corral Cristo and David Álvarez Robles Vendor Homepage: https://kriesi.at/ Version: Enfold This URL must...
WordPress Enfold Enfold theme cross-site scripting vulnerability
WordPress is the Wordpress Foundation's set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. cross-site scripting vulnerability exists in versions of WordPress Enfold Enfold theme prior to 4.8.4, which originate...
CVE-2021-24719
The Enfold Enfold WordPress theme before 4.8.4 was vulnerable to Reflected Cross-Site Scripting XSS. The vulnerability is present on Enfold versions previous than 4.8.4 which use Avia Page Builder...
CVE-2021-24719
The Enfold Enfold WordPress theme before 4.8.4 was vulnerable to Reflected Cross-Site Scripting XSS. The vulnerability is present on Enfold versions previous than 4.8.4 which use Avia Page Builder...
Cross site scripting
The Enfold Enfold WordPress theme before 4.8.4 was vulnerable to Reflected Cross-Site Scripting XSS. The vulnerability is present on Enfold versions previous than 4.8.4 which use Avia Page Builder...
CVE-2021-24719
The CVE-2021-24719 entry relates to the WordPress Enfold theme prior to 4.8.4, where the Avia Page Builder enabled a Reflected Cross-Site Scripting (XSS) vulnerability. The root cause is insufficient input validation/filtering in versions earlier than 4.8.4, allowing an attacker to cause client-s...
CVE-2021-24719 Enfold Theme < 4.8.4 - Reflected Cross-Site Scripting (XSS)
The Enfold Enfold WordPress theme before 4.8.4 was vulnerable to Reflected Cross-Site Scripting XSS. The vulnerability is present on Enfold versions previous than 4.8.4 which use Avia Page Builder...
WordPress 插件 跨站脚本漏洞
WordPress is the Wordpress Foundation's set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. cross-site scripting vulnerability exists in versions of WordPress Enfold Enfold theme prior to 4.8.4, which originate...
Enfold Theme < 4.8.4 - Reflected Cross-Site Scripting (XSS)
The Enfold theme was vulnerable to Reflected Cross-Site Scripting XSS. The vulnerability is present on Enfold versions previous than 4.8.4 which use Avia Page Builder. The issue appears when pagination comes in place while navigating on a WordPress site with Enfold theme active. When that occurs,...
Enfold Theme < 4.8.4 - Reflected Cross-Site Scripting (XSS)
The Enfold theme was vulnerable to Reflected Cross-Site Scripting XSS. The vulnerability is present on Enfold versions previous than 4.8.4 which use Avia Page Builder. PoC The issue appears when pagination comes in place while navigating on a WordPress site with Enfold theme active. When that...
WordPress Enfold premium theme <= 4.8.3 - Reflected Cross-Site Scripting (XSS) vulnerability
Reflected Cross-Site Scripting XSS vulnerability discovered by David Álvarez Robles, Francisco Díaz-Pache Alonso & Sergio Corral Cristo in WordPress Enfold premium theme versions = 4.8.3. Solution Update the WordPress Enfold premium theme to the latest available version at least 4.8.4...
WordPress Enfold theme <=4.2 - Rewrite Portfolio Permalink Structure & Information Disclosure
Rewrite Portfolio Permalink Structure & Information Disclosure in WordPress Enfold theme versions =4.2. Solution Update the WordPress Enfold theme to the latest available version at least 4.2.1...
Enfold Theme < 4.2.1 - Rewrite Portfolio Permalink Structure & Information Disclosure
The changelog describes two security fixes: - fixed: security issue that would allow an attacker to export your enfold theme settings - fixed: security issue that allowed an attacker to rewrite the portfolio permalink structure...
CVE-2014-7297
Unspecified vulnerability in the folder framework in the Enfold theme before 3.0.1 for WordPress has unknown impact and attack vectors...
Security feature bypass
Unspecified vulnerability in the folder framework in the Enfold theme before 3.0.1 for WordPress has unknown impact and attack vectors...
CVE-2014-7297
Unspecified vulnerability in the folder framework in the Enfold theme before 3.0.1 for WordPress has unknown impact and attack vectors...
CVE-2014-7297
Technical details about CVE-2014-7297 are not publicly available in the provided documents. The sources describe an unspecified vulnerability in Enfold
Enfold < 3.0.1 - Unspecified Issue
The enfold WordPress theme was affected by an Unspecified Issue security vulnerability...
WordPress Enfold Theme <= 3.0.0 - Unspecified Vulnerability
Because of this vulnerability in the folder framework, this theme has unknown impact and attack vectors. Solution Update the theme...