512 matches found
CVE-2021-24220
Thrive “Legacy” Rise by Thrive Themes WordPress theme before 2.0.0, Luxe by Thrive Themes WordPress theme before 2.0.0, Minus by Thrive Themes WordPress theme before 2.0.0, Ignition by Thrive Themes WordPress theme before 2.0.0, FocusBlog by Thrive Themes WordPress theme before 2.0.0, Squared by...
Home Villas <= 2.2 - Multiple Cross-Site Scripting Issues
An Unauthenticated Reflected & Authenticated Persistent XSS vulnerabilities were discovered in the Home Villas theme through 2.2 for WordPress. Edit WPScanTeam: July 27th, 2020 - Confirmed & Escalated to Envato July 28th, 2020 - Envato Investigating August 17th, 2020 - No updates, disclosing...
WordPress ThemeMakers Accio One Page Parallax Responsive theme Information Disclosure Vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers.ThemeMakers Accio One Page Parallax Responsive theme is a responsive one page parallax effect website theme plugin used in i...
CVE-2019-15869
The JobCareer theme before 2.5.1 for WordPress has stored XSS...
WordPress wp-bs3-rad Themes Arbitrary File Upload Vulnerability
WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. An arbitrary file upload vulnerability exists in WordPress wp-bs3-rad Themes. An attacker can exploit the vulnerability to...
DEBIAN-CVE-2017-16510
WordPress before 4.8.3 is affected by an issue where $wpdb-prepare can create unexpected and unsafe queries leading to potential SQL injection SQLi in plugins and themes, as demonstrated by a "double prepare" approach, a different vulnerability than CVE-2017-14723...
DEBIAN-CVE-2016-1564
Multiple cross-site scripting XSS vulnerabilities in wp-includes/class-wp-theme.php in WordPress before 4.4.1 allow remote attackers to inject arbitrary web script or HTML via a 1 stylesheet name or 2 template name to wp-admin/customize.php...
Wordpress Beauty & Clean Theme 1.0.8 - Arbitrary File Upload Vulnerability
No description provided by source...
CVE-2015-0901
Cross-site scripting XSS vulnerability in the duwasai flashy theme 1.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
WordPress Elegant Themes Divi Theme Directory Traversal Vulnerability
WordPress is a set of blogging platform developed by WordPress Software Foundation using PHP language, which supports setting up personal blog sites on servers with PHP and MySQL.Elegant Themes Divi is one of the Elegant Themes. A directory traversal vulnerability exists in the WordPress Elegant...
WordPress FR0_theme theme Arbitrary File Download Vulnerability
Exploit for php platform in category web applications +++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Title : WordPress FR0theme theme Arbitrary File Download Vulnerability Author : alieye designer Homepage : http://english.gg.go.kr/ Contact : email protected Risk : High Class: Remote...
coppermine122.txt
---------------------------------------------------- Coppermine Photo Gallery v1.2.2b-Nuke Remote File Inclusion Vulnerabilities ---------------------------------------------------- Discovered By A-S-T TEAM WE ARE CrAsHoVeRrIdE & BLACK-CODE & MR-HCR...