2 matches found
CVE-2021-24317
CVE-2021-24317 affects the Listeo WordPress theme prior to v1.6.11. The vulnerability is Cross-Site Scripting (XSS) in multiple entry points (Search, Booking Confirmation, Personal Messages) caused by insufficient sanitisation of parameters. Public listings describe Unauthenticated Reflected XSS ...
CVE-2021-24317 Listeo < 1.6.11 - Multiple XSS & XFS vulnerabilities
The Listeo WordPress theme before 1.6.11 did not properly sanitise some parameters in its Search, Booking Confirmation and Personal Message pages, leading to Cross-Site Scripting issues...