6 matches found
WordPress Easy Digital Downloads Quota theme cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers.Easy Digital Downloads EDD Quota theme is a Quota theme plugin used in it. A cross-site scripting vulnerability exists in th...
CVE-2015-9534
The Easy Digital Downloads EDD Quota theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because addqueryarg is misused...
Design/Logic Flaw
The Easy Digital Downloads EDD Quota theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because addqueryarg is misused...
CVE-2015-9534
The CVE-2015-9534 entry describes a cross-site scripting (XSS) vulnerability in the WordPress Easy Digital Downloads Quota theme. Affected are EDD Quota theme builds for WordPress with the following vulnerable branches: 1.8.x before 1.8.7; 1.9.x before 1.9.10; 2.0.x before 2.0.5; 2.1.x before 2.1...
CVE-2015-9534
The Easy Digital Downloads EDD Quota theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because addqueryarg is misused...
WordPress Quota Theme <= 1.2.4 - Cross Site Scripting
Because of this vulnerability, the attackers can inject arbitrary web script or HTML. Solution Update the theme...