5 matches found
CVE-2007-4480
Cross-site scripting XSS vulnerability in index.php in the Sirius 1.0 theme for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATHINFO PHPSELF...
Cross site scripting
Cross-site scripting XSS vulnerability in index.php in the Sirius 1.0 theme for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATHINFO PHPSELF...
CVE-2007-4480
Cross-site scripting XSS vulnerability in index.php in the Sirius 1.0 theme for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATHINFO PHPSELF...
CVE-2007-4480
CVE-2007-4480 affects the Sirius 1.0 WordPress theme. The vulnerability is a Cross-Site Scripting (XSS) in index.php via PATH_INFO (PHP_SELF), allowing remote attackers to inject arbitrary script/HTML. No exploitation details are provided; remediation is to update the theme (patch/version update ...
Vulnerability in theme Sirius 1.0 for WordPress
Здравствуйте 3APA3A! Сообщаю вам о найденной мною Cross-Site Scripting уязвимости в теме Sirius 1.0 для WordPress. XSS: http://site/index.php/223E3Cscript3Ealertdocument.cookie3C/script3E Уязвимость связана с недостаточной фильтрацией переменной PHPSELF. Дополнительная информация о данной...