3 matches found
CVE-2024-2234 Himer - Social Questions and Answers < 2.1.1 - Contributor+ Stored XSS
The Himer WordPress theme before 2.1.1 does not sanitise and escape some of its Post settings, which could allow high privilege users such as Contributor to perform Stored Cross-Site Scripting attacks...
CVE-2024-2234 Himer - Social Questions and Answers < 2.1.1 - Contributor+ Stored XSS
The Himer WordPress theme before 2.1.1 does not sanitise and escape some of its Post settings, which could allow high privilege users such as Contributor to perform Stored Cross-Site Scripting attacks...
WordPress Himer Theme < 2.1.1 is vulnerable to Cross Site Scripting (XSS)
Software Himer Type Theme Vulnerable versions 2.1.1 Fixed in 2.1.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-2234 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID acb8e6a0fd0f Credits Bob Matyas Required privilege Contributor Published ...