CVE-2026-27367

CVE-2026-27367 is a reflected XSS in the ThemeGoods Musico WordPress theme. Public description confirms an improper neutralization of input during web page generation, enabling Reflected XSS against Musico versions prior to 3.4.5. Affected product: ThemeGoods Musico (WordPress Theme) with the vul...

CVE-2026-27367 WordPress Musico theme < 3.4.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeGoods Musico musico allows Reflected XSS.This issue affects Musico: from n/a through 3.4.5...