2 matches found
CVE-2020-14010
The Laborator Xenon theme 1.3 for WordPress allows Reflected XSS via the data/typeahead-generate.php q aka name parameter...
CVE-2020-14010
CVE-2020-14010 affects the Laborator Xenon WordPress theme v1.3 (and Xenon premium theme) where the parameter q in /data/typeahead-generate.php is reflected to the page, enabling a Reflected XSS. Exploitation can occur without authentication, according to PatchStack and related entries; CVSS scor...