WordPress Multiple Themes 's' Parameter XSS Vulnerabilities (Oct 2011) - Active Check

At least one theme of WordPress is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2011-3860

Cross-site scripting XSS vulnerability in the Cover WP theme before 1.6.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in the Cover WP theme before 1.6.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter...

CVE-2011-3860

The CVE-2011-3860 entry describes a cross-site scripting (XSS) vulnerability in the WordPress Cover WP theme prior to version 1.6.6. The issue affects the theme’s s parameter, allowing remote attackers to inject arbitrary scripts or HTML. Root cause is improper handling/cleanup of user input in t...

CVE-2011-3860

Cross-site scripting XSS vulnerability in the Cover WP theme before 1.6.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter...

WordPress Cover WP Theme 1.6.5 - Cross Site Scripting

WordPress Cover WP theme's "s" parameter is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can steal cookie-base...

WordPress Theme Cover WP 1.6.5 - 's' Cross-Site Scripting

source: https://www.securityfocus.com/bid/49873/info The Cover WP theme for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...