14 matches found
CVE-2019-20141
An XSS issue was discovered in the Laborator Neon theme 2.0 for WordPress via the data/autosuggest-remote.php q parameter...
EUVD-2020-6098
Malware in sbrugna...
CVE-2020-13890
The Neon theme 2.0 before 2020-06-03 for Bootstrap allows XSS via an Add Task Input operation in a dashboard...
Neon theme cross-site scripting vulnerability
Bootstrap is a use of HTML, CSS and JavaScript development of open source web front-end framework . Neon theme is used in one of the theme plugin . A cross-site scripting vulnerability exists in Neon theme 2.0 and later versions prior to 2020-06-03 Bootstrap, which stems from a lack of proper...
CVE-2020-13890
The Neon theme 2.0 before 2020-06-03 for Bootstrap allows XSS via an Add Task Input operation in a dashboard...
CVE-2020-13890
The Neon theme 2.0 before 2020-06-03 for Bootstrap allows XSS via an Add Task Input operation in a dashboard...
Design/Logic Flaw
The Neon theme 2.0 before 2020-06-03 for Bootstrap allows XSS via an Add Task Input operation in a dashboard...
CVE-2020-13890
The CVE-2020-13890 entry concerns Neon theme 2.0 for Bootstrap, prior to 2020-06-03. The vulnerability is an XSS flaw in the dashboard Add Task Input operation, caused by insufficient validation of client-side data. Reported sources (NVD, CNVD, Red Hat advisory) describe the same issue and identi...
CVE-2020-13890
The Neon theme 2.0 before 2020-06-03 for Bootstrap allows XSS via an Add Task Input operation in a dashboard...
WordPress Laborator Neon theme cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Laborator Neon theme is used in one of the back-end website management theme plugin. A cross-site scripting vulnerability exists in...
CVE-2019-20141
An XSS issue was discovered in the Laborator Neon theme 2.0 for WordPress via the data/autosuggest-remote.php q parameter...
CVE-2019-20141
An XSS issue was discovered in the Laborator Neon theme 2.0 for WordPress via the data/autosuggest-remote.php q parameter...
CVE-2019-20141
CVE-2019-20141 affects WordPress with the Laborator Neon theme 2.0. The issue is a cross-site scripting (XSS) vulnerability via the data/autosuggest-remote.php q parameter. Exploitation details are not provided in the documents beyond the XSS description; user interaction is often required per CV...
PT-2019-16101 · WordPress · Laborator Neon
Name of the Vulnerable Software and Affected Versions: Laborator Neon theme version 2.0 Description: A cross-site scripting XSS issue was found in the Laborator Neon theme for WordPress. The issue is related to the q parameter in the "data/autosuggest-remote.php" endpoint. Recommendations: For...