CVE-2015-9503

The Modern theme before 1.4.2 for WordPress has XSS via the genericons/example.html anchor identifier...

The vulnerability of the graphical input settings in the fly-admin-dm system, due to lack of access control mechanisms, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the graphical input settings in the fly-admin-dm system is related to deficiencies in access control when changing the theme to “Fly Modern”. Exploiting this vulnerability allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service...

WordPress Modern theme cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Modern theme is a multi-functional website theme plugin used in it. A cross-site scripting vulnerability exists in WordPress Modern...

CVE-2015-9503

The Modern theme before 1.4.2 for WordPress has XSS via the genericons/example.html anchor identifier...

CVE-2015-9503

The CVE-2015-9503 issue affects the WordPress Modern theme prior to version 1.4.2. Multiple connected sources confirm a cross-site scripting (XSS) vulnerability introduced via the genericons/example.html anchor identifier, resulting in a DOM-based XSS in exposed contexts. The vulnerability stems ...

Modern Theme <= 1.4.1 - DOM Cross-Site Scripting (XSS)

The Modern WordPress theme was affected by a DOM Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/themes/modern/genericons/example.html...

openSUSE Security Update : seamonkey (openSUSE-2015-250)

SeaMonkey was updated to 2.33 bnc917597 - MFSA 2015-11/CVE-2015-0835/CVE-2015-0836 Miscellaneous memory safety hazards - MFSA 2015-12/CVE-2015-0833 bmo945192 Invoking Mozilla updater will load locally stored DLL files Windows only - MFSA 2015-13/CVE-2015-0832 bmo1065909 Appended period to hostnam...