CVE-2023-29430

Unauth. Reflected Cross-Site Scripting XSS vulnerability in CTHthemes TheRoof theme = 1.0.3 versions...

EUVD-2023-32999

Malicious code in bioql PyPI...

CVE-2023-29430

Unauth. Reflected Cross-Site Scripting XSS vulnerability in CTHthemes TheRoof theme = 1.0.3 versions...

CVE-2023-29430 WordPress TheRoof Theme <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in CTHthemes TheRoof theme = 1.0.3 versions...

CVE-2023-29430 WordPress TheRoof Theme <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in CTHthemes TheRoof theme = 1.0.3 versions...

CVE-2023-29430

CVE-2023-29430 affects the WordPress TheRoof theme by CTHthemes, up to version 1.0.3, via an unauthenticated reflected XSS. A fix is available in version 1.0.4 and later. Action: upgrade TheRoof theme to at least 1.0.4 to remediate the vulnerability.

TheRoof < 1.0.4 - Unauthenticated Reflected XSS

The plugin does not sanitize and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against visitors following crafted links...

PT-2023-22256 · Cththemes · Cththemes Theroof Theme +1

Name of the Vulnerable Software and Affected Versions: CTHthemes TheRoof theme versions 1.0.3 and earlier CTHthemes TheRoof plugin versions 1.0.3 and earlier Description: The issue is related to an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject...

WordPress TheRoof Theme <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software TheRoof Type Theme Vulnerable versions = 1.0.3 Fixed in 1.0.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-29430 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID a30310c483cd Credits RE-ALTER Required privilege...