3 matches found
CVE-2015-9370
Invoices Add-on for iThemes Exchange before 1.4.0 for WordPress has XSS via addqueryarg and removequeryarg...
CVE-2015-9370
Invoices Add-on for iThemes Exchange before 1.4.0 for WordPress has XSS via addqueryarg and removequeryarg...
CVE-2015-9370
CVE-2015-9370 affects WordPress Invoices Add-on for iThemes Exchange (pre-1.4.0). A cross-site scripting (XSS) vulnerability is reported via add_query_arg() and remove_query_arg(), enabling client-side script execution. Multiple sources (NVD, RH) corroborate the XSS issue; exploitation status is ...