WordPress Amela Theme < 1.0.14 is vulnerable to Cross Site Scripting (XSS)

Software Amela Type Theme Vulnerable versions 1.0.14 Fixed in 1.0.14 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 21e404749550 Credits Rafie Muhammad Patchstack Required privileg...

WordPress Amela theme < 1.0.5 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Amela theme versions 1.0.5. Solution Update the WordPress Amela theme to the latest available version at least 1.0.5...

WordPress Amela theme < 1.0.5 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Amela theme versions 1.0.5. Solution Update the WordPress Amela theme to the latest available version at least 1.0.5...