WordPress Theater for WordPress plugin <= 0.19 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by PPzzAArr in WordPress Plugin Theater for WordPress versions = 0.19...

WordPress plugin theater 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

WordPress Theater for WordPress plugin <= 0.19 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Arif Shaikh in WordPress Plugin Theater for WordPress versions = 0.19...

WordPress Theater for WordPress plugin missing license vulnerability

WordPress Theater for WordPress plugin is a plugin designed for advanced users and developers to manage theater related features such as show scheduling, ticketing system and more. A lack of authorization vulnerability exists in the WordPress Theater for WordPress plugin, which can be exploited b...

WordPress Theater for WordPress plugin <= 0.18.6.2 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin Theater for WordPress versions = 0.18.6.2...

CVE-2024-11371

The Theater for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 0.18.6.2. This makes it possible for unauthenticated attackers to inject arbitrary web scripts...