25 matches found
CVE-2015-0901
CVE-2015-0901 concerns the WordPress flashy theme (duwasai flashy) version 1.3 and earlier. The core issue is a cross-site scripting (XSS) vulnerability that allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Multiple connected records corroborate the vulnerab...
WordPress theme flashy vulnerable to cross-site scripting
Overview flashy is a theme for WordPress. flashy contains a cross-site scripting vulnerability. Koki Takahashi reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact An arbitrary script may be executed on the user'...
JVN#97281747: WordPress theme flashy vulnerable to cross-site scripting
flashy is a theme for WordPress. flashy contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Do not use flashy flashy is no longer being developed or maintained. It is recommended to stop using flashy. Products Affected flas...
Flashy Theme <= 1.3 - Cross-Site Scripting (XSS)
The product is discontinued, and a fix will not be created...
WordPress Flashy Theme <= 1.3 - XSS
This vulnerability allows the attackers to inject arbitrary web script or HTML via unspecified vectors. Solution This theme is no longer being developed or maintained. It is recommended to stop using it...