2157 matches found
Wordpress Beauty & Clean Theme 1.0.8 - Arbitrary File Upload Vulnerability
No description provided by source...
ScoreMe Theme - Unauthenticated Reflected Cross-Site Scripting (XSS)
The scoreme WordPress theme was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability...
WordPress Theme Beauty Clean 1.0.8 - Arbitrary File Upload
WordPress Theme Beauty Clean 1.0.8 - Arbitrary File Upload Exploit Title: Wordpress Beauty Theme File Upload Vulnerability v1.0.8 Discovery Date: 02.09.2016 Public Disclosure Date:03.09.2016 Vendor Homepage: http://www.yourinspirationweb.com Exploit Author: Colette Chamberland Wordfence Contact:...
Antioch Theme - Arbitrary File Download
The antioch WordPress theme was affected by an Arbitrary File Download security vulnerability...
Auberge Theme <= 1.4.4 - DOM Cross-Site Scripting (XSS)
The Auberge WordPress theme was affected by a DOM Cross-Site Scripting XSS security vulnerability. PoC http://www.example.com/wp-content/themes/auberge/genericons/example.html...
Lattice < 1.1.4 - Unspecified XSS
The lattice WordPress theme was affected by an Unspecified XSS security vulnerability...
Quota < 1.2.5 - Unspecified XSS
The quota WordPress theme was affected by an Unspecified XSS security vulnerability...
WordPress theme flashy vulnerable to cross-site scripting
Overview flashy is a theme for WordPress. flashy contains a cross-site scripting vulnerability. Koki Takahashi reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact An arbitrary script may be executed on the user'...
Wordpress Theme Photocrati 4.x.x - SQL Injection & XSS Vulnerabilities
Exploit for php platform in category web applications Exploit Title: wordpress theme photocrati 4.X.X SQL INJECTION Google Dork: Designed by Photocrati also powered by Photocrati Date: 23 / 09 / 2011 Exploit Author: ayastar Email : email protected Software Link: http://www.photocrati.com Version:...
CVE-2015-1172 Wordpress-theme remote arbitrary code
Product: holdingpattern Vendor: Liftux Vulnerable Versions: 0.6 and prior Tested Version: 0.6 Advisory Publication: January 18, 2015 Vendor Notification: January 14, 2015 Public Disclosure: January 18, 2015 Vulnerability Type: Exec Code Authentication: Not required to exploit CVE Reference:...
WordPress Elegant Themes Divi Theme Directory Traversal Vulnerability
WordPress is a set of blogging platform developed by WordPress Software Foundation using PHP language, which supports setting up personal blog sites on servers with PHP and MySQL.Elegant Themes Divi is one of the Elegant Themes. A directory traversal vulnerability exists in the WordPress Elegant...
WordPress Refraction Theme - Multiple Vulnerabilities
This WordPress theme is prone to a cross site scripting and full path disclosure vulnerabilities. Solution Update the theme...
Urban City - download.php Local File Inclusion (LFI)
The urbancity WordPress theme was affected by a download.php Local File Inclusion LFI security vulnerability...
WordPress Theme Marble Arbitrary File Download Vulnerability
Exploit for php platform in category web applications Exploit Title : WordPress Theme Marble Arbitrary File Download Vulnerability Exploit Author : NULLPointer Date : 17/09/2014 Vendor Homepage : http://themeforest.net/item/marble-flat-responsive-creative-wordpress-theme/5896650 Version: 1.1.2...
WordPress Theme Acento - view-pdf.php?File Arbitrary File Download
WordPress Theme Acento - view-pdf.php?File Arbitrary File Download +++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Title : WordPress acento theme Arbitrary File Download Vulnerability Author : alieye vondor : http://www.wpbyexample.com/detail/acentocultural.com Contact : [email protected]...
WordPress Theme Acento - 'view-pdf.php?File' Arbitrary File Download
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Title : WordPress acento theme Arbitrary File Download Vulnerability Author : alieye vondor : http://www.wpbyexample.com/detail/acentocultural.com Contact : [email protected] Risk : High Class: Remote Date: 01/09/2014...
LineNity 1.20 - download.php imgurl Parameter Remote Path Traversal File Access
The linenity WordPress theme was affected by a download.php imgurl Parameter Remote Path Traversal File Access security vulnerability...
Love It - XSS / Content Spoofing / Path Disclosure
The iloveit WordPress theme was affected by a XSS / Content Spoofing / Path Disclosure security vulnerability...
Elegant Grunge 1.0.3 - s Parameter XSS
The Elegant Grunge WordPress theme was affected by a s Parameter XSS security vulnerability...
Kiddo - remote shell upload
The kiddo WordPress theme was affected by a remote shell upload security vulnerability...