2 matches found
CVE-2024-5789
CVE-2024-5789 : Triton Lite theme for WordPress is vulnerable to a stored cross-site scripting (XSS) flaw in all versions up to and including 1.3, caused by insufficient input sanitization and output escaping of the Button shortcode’s 'url' attribute . An attacker with Contributor+ privileges can...
WordPress Triton Lite Theme <= 1.3 is vulnerable to Cross Site Scripting (XSS)
Software Triton Lite Type Theme Vulnerable versions = 1.3 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-5789 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 97a12617cc1a Credits Francesco Carlucci Required...