Bello@* Security Vulnerabilities and Issues — Bello@* CVE List

Lucene search

Bold-themesBello*

3 matches found

CVE•added 2021/06/01 2:15 p.m.•58 views

CVE-2021-24320

The Bello - Directory & Listing WordPress theme before 1.6.0 did not properly sanitise and escape its listing_list_view, bt_bb_listing_field_my_lat, bt_bb_listing_field_my_lng, bt_bb_listing_field_distance_value, bt_bb_listing_field_my_lat_default, bt_bb_listing_field_keyword, bt_bb_listing_field_l...

6.1CVSS6AI score0.50348EPSS

CVE•added 2021/06/01 2:15 p.m.•42 views

CVE-2021-24321

The Bello - Directory & Listing WordPress theme before 1.6.0 did not sanitise the bt_bb_listing_field_price_range_to, bt_bb_listing_field_now_open, bt_bb_listing_field_my_lng, listing_list_view and bt_bb_listing_field_my_lat parameters before using them in a SQL statement, leading to SQL Injection ...

9.8CVSS9.8AI score0.00758EPSS

CVE•added 2021/06/01 2:15 p.m.•41 views

CVE-2021-24319

The Bello - Directory & Listing WordPress theme before 1.6.0 did not properly sanitise its post_excerpt parameter before outputting it back in the shop/my-account/bello-listing-endpoint/ page, leading to a Cross-Site Scripting issue

5.4CVSS5.3AI score0.00162EPSS