10 matches found
EUVD-2011-3822
Malware in sbrugna...
CVE-2011-3865
Cross-site scripting XSS vulnerability in the Black-LetterHead theme before 1.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to index.php...
WordPress Theme Black-LetterHead 1.5 - index.php Cross-Site Scripting
WordPress Theme Black-LetterHead 1.5 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/49879/info The Black-LetterHead theme for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage...
WordPress Black-LetterHead Theme 1.5 - Cross Site Scripting
WordPress Black-LetterHead theme's "index.php" parameter is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can...
WordPress Theme Black-LetterHead 1.5 - 'index.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/49879/info The Black-LetterHead theme for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
CVE-2011-3865
Cross-site scripting XSS vulnerability in the Black-LetterHead theme before 1.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to index.php...
Cross site scripting
Cross-site scripting XSS vulnerability in the Black-LetterHead theme before 1.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to index.php...
CVE-2011-3865
Cross-site scripting XSS vulnerability in the Black-LetterHead theme before 1.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to index.php...
CVE-2011-3865
The CVE-2011-3865 entry applies to the Black-LetterHead WordPress theme (versions prior to 1.6). The root cause is a cross-site scripting (XSS) flaw that permits attacker-controlled input in the PATH_INFO to index.php to be executed in a user’s browser. Impact is user-level data and session risk ...
PT-2011-4741 · Unknown · Black-Letterhead
Name of the Vulnerable Software and Affected Versions: Black-LetterHead theme version 1.5 and earlier Description: A cross-site scripting issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved by manipulating the PATH INFO to index.php. Recommendations: F...