14 matches found
Salutation Responsive WordPress + BuddyPress Theme Cross-Site Scripting Vulnerability
Salutation Responsive WordPress + BuddyPress Theme is a responsive WordPress theme used in WordPress. A cross-site scripting vulnerability exists in Salutation Responsive WordPress+BuddyPress Theme version 3.0.15. A remote attacker can exploit this vulnerability to perform administrator actions...
CVE-2017-1000227
Stored XSS in Salutation Responsive WordPress + BuddyPress Theme version 3.0.15 could allow logged-in users to do almost anything an admin can...
Cross site scripting
Stored XSS in Salutation Responsive WordPress + BuddyPress Theme version 3.0.15 could allow logged-in users to do almost anything an admin can...
CVE-2017-1000227
Stored XSS in Salutation Responsive WordPress + BuddyPress Theme version 3.0.15 could allow logged-in users to do almost anything an admin can...
CVE-2017-1000227
The CVE targets Salutation Responsive WordPress + BuddyPress Theme, version 3.0.15. A Stored XSS vulnerability exists in this theme, enabling a logged-in attacker to perform admin-like actions. Several sources (e.g., NVD entry for CVE-2017-1000227 and related advisories) describe the issue as a C...
CVE-2017-1000227
Stored XSS in Salutation Responsive WordPress + BuddyPress Theme version 3.0.15 could allow logged-in users to do almost anything an admin can...
Salutation Responsive < 3.0.16 - Stored XSS
The parallelus-salutation WordPress theme was affected by a Stored XSS security vulnerability...
Salutation Responsive WordPress + BuddyPress theme <=3.0.15 - Stored Cross-site scripting (XSS) vulnerability
WordPress premium Salutation Responsive WordPress + BuddyPress theme vulnerable due to the Stored Cross-site scripting XSS vulnerability found by Tom Adams. Solution Update Salutation Responsive WordPress + BuddyPress theme to the latest available version at least 3.0.16...
Salutation Responsive WordPress + BuddyPress Theme <= 3.0.15 - Stored XSS
The salutation-wp WordPress theme was affected by a Stored XSS security vulnerability...
Salutation Responsive 3.0.15 Cross Site Scripting
Details ================ Software: Salutation Responsive WordPress + BuddyPress Theme Version: 3.0.15 Homepage: https://themeforest.net/item/salutation-responsive-wordpress-buddypress-theme/548199 Advisory report: https://security.dxw.com/advisories/stored-xss-salutation-theme/ CVE: Awaiting...
WordPress theme parallelus-salutation Arbitrary File Download Vulnerability
No description provided by source...
Multiple Parallelus Themes - Reflected Cross-Site Scripting (XSS)
Multiple themes from the Parallelus vendor were affected by reflected Cross-Site Scripting issues: Unite closed - https://themeforest.net/item/unite-wordpress-business-magazine-theme/90959 / http://para.llel.us/themes/unite-wp/ Salutation -...
WordPress Salutation Theme - XSS
This WordPress theme is prone to a cross-site scripting XSS vulnerability. It allows remote attackers to inject arbitrary script or HTML. Solution Update the theme...
Some WordPress Themes, Thousands of Sites Open to XSS Vulnerability
A number of WordPress themes being distributed by the developer Parallelus are vulnerable to cross-site scripting XSS attacks, reports said. Themes, bits of PHP and HTML code that alter the look and functionality of sites, are usually installed via WordPress’ dashboard tool or by FTP. According t...