WordPress CTHthemes - Cross-Site Scripting

WordPress CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes contain reflected cross-site scripting vulnerabilities via a search query. id: CVE-2019-20210 info: name: WordPress CTHthemes - Cross-Site Scripting author: edoardottt severity: medium description: |...

CVE-2023-29430

Unauth. Reflected Cross-Site Scripting XSS vulnerability in CTHthemes TheRoof theme = 1.0.3 versions...

EUVD-2019-10765

Malware in sbrugna...

EUVD-2019-10766

Malware in sbrugna...

CVE-2023-29430

Unauth. Reflected Cross-Site Scripting XSS vulnerability in CTHthemes TheRoof theme = 1.0.3 versions...

CVE-2023-29430

Unauth. Reflected Cross-Site Scripting XSS vulnerability in CTHthemes TheRoof theme = 1.0.3 versions...

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in CTHthemes TheRoof theme = 1.0.3 versions...

CVE-2023-29430

CVE-2023-29430 affects the WordPress TheRoof theme by CTHthemes, up to version 1.0.3, via an unauthenticated reflected XSS. A fix is available in version 1.0.4 and later. Action: upgrade TheRoof theme to at least 1.0.4 to remediate the vulnerability.

WordPress theme CTHthemes TheRoof theme 跨站脚本漏洞

WordPress is a blogging platform developed in PHP by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress theme is a theme for WordPress. A cross-site scripting vulnerability exists in WordPress theme CTHthemes TheRoof theme 1.0.3...

CVE-2023-29236

CVE-2023-29236 is an unauthenticated reflected XSS in the Cththemes Outdoor WordPress theme, affected versions up to 3.9.6. Publicly documented details confirm the vulnerability and that a fix exists: update to version 3.9.7 or newer. Multiple sources (Wordfence, NVD, Red Hat advisory, Patchstack...

CVE-2019-20212

The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via the chat widget/page message form...

CVE-2019-20209

The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow nsecure Direct Object Reference IDOR via wp-admin/admin-ajax.php to delete any page/post/listing...

CVE-2019-20212

CVE-2019-20212 affects WordPress themes CTHthemes CityBook (pre-2.3.4), TownHub (pre-1.0.6), and EasyBook (pre-1.2.2). The vulnerability is a Persistent XSS via the chat widget/page message form, allowing injected script to persist in user sessions. Red Hat and other sources corroborate the same ...

CVE-2019-20210

The CVE-2019-20210 entry affects WordPress themes CTHthemes CityBook < 2.3.4, TownHub < 1.0.6, and EasyBook

CVE-2019-20209

The CVE-2019-20209 issue affects WordPress themes CityBook (<2.3.4), TownHub (<1.0.6), and EasyBook (