10 matches found
EUVD-2011-3822
Malware in sbrugna...
CVE-2011-3865
Cross-site scripting XSS vulnerability in the Black-LetterHead theme before 1.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to index.php...
WordPress Theme Black-LetterHead 1.5 - index.php Cross-Site Scripting
WordPress Theme Black-LetterHead 1.5 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/49879/info The Black-LetterHead theme for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage...
WordPress Theme Black-LetterHead 1.5 - 'index.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/49879/info The Black-LetterHead theme for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
WordPress Black-LetterHead Theme 1.5 - Cross Site Scripting
WordPress Black-LetterHead theme's "index.php" parameter is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can...
CVE-2011-3865
Cross-site scripting XSS vulnerability in the Black-LetterHead theme before 1.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to index.php...
Cross site scripting
Cross-site scripting XSS vulnerability in the Black-LetterHead theme before 1.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to index.php...
CVE-2011-3865
Cross-site scripting XSS vulnerability in the Black-LetterHead theme before 1.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to index.php...
CVE-2011-3865
The CVE-2011-3865 entry applies to the Black-LetterHead WordPress theme (versions prior to 1.6). The root cause is a cross-site scripting (XSS) flaw that permits attacker-controlled input in the PATH_INFO to index.php to be executed in a user’s browser. Impact is user-level data and session risk ...
PT-2011-4741 · Unknown · Black-Letterhead
Name of the Vulnerable Software and Affected Versions: Black-LetterHead theme version 1.5 and earlier Description: A cross-site scripting issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved by manipulating the PATH INFO to index.php. Recommendations: F...