WordPress Bonus Theme 1.0 - Cross Site Scripting

WordPress Bonus theme's "s" parameter is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can steal cookie-based...

WordPress Theme Bonus 1.0 - s Cross-Site Scripting

WordPress Theme Bonus 1.0 - s Cross-Site Scripting source: https://www.securityfocus.com/bid/50527/info The Bonus theme for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrar...