7 matches found
EUVD-2015-9375
Malware in sbrugna...
CVE-2015-9535
The Easy Digital Downloads EDD Shoppette theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because addqueryarg is misused...
WordPress Easy Digital Downloads Shoppette theme cross-site scripting vulnerability
WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers.Easy Digital Downloads EDD Shoppette theme is an e-commerce website theme plugin used in it. A cross-site scripting...
CVE-2015-9535
The Easy Digital Downloads EDD Shoppette theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because addqueryarg is misused...
CVE-2015-9535
The Easy Digital Downloads EDD Shoppette theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because addqueryarg is misused...
CVE-2015-9535
CVE-2015-9535 concerns the WordPress Easy Digital Downloads (EDD) Shoppette theme. Multiple connected sources confirm a cross-site scripting (XSS) vulnerability caused by misuse of the add_query_arg function. Affected EDD/Shoppette versions include: 1.8.x before 1.8.7; 1.9.x before 1.9.10; 2.0.x ...
WordPress Shoppette Theme <= 1.0.4 - Cross Site Scripting
Because of this vulnerability, the attackers can inject arbitrary web script or HTML. Solution Update the theme...