3 matches found
CVE-2023-41237
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest Themes Arya Multipurpose Pro theme = 1.0.8 versions...
CVE-2023-41237
CVE-2023-41237 stems from an unauthenticated, reflected Cross-Site Scripting (XSS) in the WordPress theme Everest Themes’ Arya Multipurpose Pro, versioned ≤ 1.0.8. Public writeups consistently describe it as an unauthenticated XSS issue, with the impact limited to data integrity and user interact...
WordPress Arya Multipurpose Pro Theme <= 1.0.8 is vulnerable to Cross Site Scripting (XSS)
Software Arya Multipurpose Pro Type Theme Vulnerable versions = 1.0.8 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-41237 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 17b111a67e25 Credits László Radnai...