CVE-2016-10999
CVE-2016-10999 affects the WordPress Goodnews theme up to 2016-02-28, with a reflected XSS via the s parameter. The Red Hat/EUVD/NVD entries corroborate the same issue; the root cause is an input that allows script injection. Exploit details and a published patch/mitigation are not provided in th...