2109 matches found
george-west-tx.proudcity.com XSS vulnerability
Open Bug Bounty ID: OBB-681416 Description| Value ---|--- Affected Website:| george-west-tx.proudcity.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Proud City Wordpress Theme Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3...
elgl.org XSS vulnerability
Open Bug Bounty ID: OBB-681400 Description| Value ---|--- Affected Website:| elgl.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Proud City Wordpress Theme Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
westcarrollton.org XSS vulnerability
Open Bug Bounty ID: OBB-681399 Description| Value ---|--- Affected Website:| westcarrollton.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Proud City Wordpress Theme Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6...
colma.ca.gov XSS vulnerability
Open Bug Bounty ID: OBB-681373 Description| Value ---|--- Affected Website:| colma.ca.gov Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Proud City Wordpress Theme Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
BBE theme for WordPress HTML editor vulnerability
BBE theme for WordPress is a theme plugin for the WordPress platform. A security vulnerability exists in BBE theme for WordPress versions prior to 1.53. An attacker can exploit the vulnerability to launch the HTML editor directly...
CVE-2017-1000227
Stored XSS in Salutation Responsive WordPress + BuddyPress Theme version 3.0.15 could allow logged-in users to do almost anything an admin can...
Salutation Responsive < 3.0.16 - Stored XSS
The parallelus-salutation WordPress theme was affected by a Stored XSS security vulnerability...
Multiple Vulnerabilities in Wordpress Themes Qualifire
WordPress is a blogging platform developed using the PHP language that allows users to set up their weblogs on servers that support PHP and MySQL databases. A file upload and cross-site request forgery vulnerability exists in Wordpress Themes Qualifire, which can be exploited by remote attackers ...
WordPress Atahualpa Theme Cross Site Request Forgery
------------------------------------------------------------------------ Cross-Site Request Forgery in Atahualpa WordPress Theme ------------------------------------------------------------------------ Spyros Gasteratos, July 2016...
WordPress Atahualpa Theme Cross Site Scripting
------------------------------------------------------------------------ Cross-Site Scripting in Atahualpa WordPress Theme ------------------------------------------------------------------------ Spyros Gasteratos, July 2016 ------------------------------------------------------------------------...
WordPress ColorWay 3.4.1 Cross Site Scripting
------------------------------------------------------------------------ Cross-Site Scripting vulnerability in ColorWay WordPress Theme ------------------------------------------------------------------------ Yorick Koster, July 2016...
WordPress Theme Creative Multi-Purpose 9.1.3 - Persistent Cross-Site Scripting
Vendor Homepage: http://bridge.qodeinteractive.com/ Software Link: http://themeforest.net/item/bridge-creative-multipurpose-wordpress-theme/7315054 Version: 9.1.3 Tested on: Debian 8, PHP 5.6.17-3 Type: Stored XSS, Ability to overwrite any theme settings. Time line: Found 23-Apr-2016, Vendor...
Wordpress Beauty & Clean Theme 1.0.8 - Arbitrary File Upload Vulnerability
No description provided by source...
ScoreMe Theme - Unauthenticated Reflected Cross-Site Scripting (XSS)
The scoreme WordPress theme was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability...
WordPress Theme Beauty Clean 1.0.8 - Arbitrary File Upload
WordPress Theme Beauty Clean 1.0.8 - Arbitrary File Upload Exploit Title: Wordpress Beauty Theme File Upload Vulnerability v1.0.8 Discovery Date: 02.09.2016 Public Disclosure Date:03.09.2016 Vendor Homepage: http://www.yourinspirationweb.com Exploit Author: Colette Chamberland Wordfence Contact:...
Antioch Theme - Arbitrary File Download
The antioch WordPress theme was affected by an Arbitrary File Download security vulnerability...
Auberge Theme <= 1.4.4 - DOM Cross-Site Scripting (XSS)
The Auberge WordPress theme was affected by a DOM Cross-Site Scripting XSS security vulnerability. PoC http://www.example.com/wp-content/themes/auberge/genericons/example.html...
Lattice < 1.1.4 - Unspecified XSS
The lattice WordPress theme was affected by an Unspecified XSS security vulnerability...
Quota < 1.2.5 - Unspecified XSS
The quota WordPress theme was affected by an Unspecified XSS security vulnerability...
WordPress theme flashy vulnerable to cross-site scripting
Overview flashy is a theme for WordPress. flashy contains a cross-site scripting vulnerability. Koki Takahashi reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact An arbitrary script may be executed on the user'...