Lucene search

K

Cththemes Security Vulnerabilities

cve
cve

CVE-2023-29236

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Cththemes Outdoor theme <= 3.9.6...

7.1CVSS

6AI Score

0.0005EPSS

2023-04-07 12:15 PM
23
cve
cve

CVE-2023-25041

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Cththemes Monolit theme <= 2.0.6...

7.1CVSS

6AI Score

0.0005EPSS

2023-04-07 12:15 PM
24
cve
cve

CVE-2023-36502

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in cththemes Balkon plugin <= 1.3.2...

7.1CVSS

6.8AI Score

0.0005EPSS

2023-07-25 02:15 PM
10
cve
cve

CVE-2023-29430

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in CTHthemes TheRoof theme <= 1.0.3...

7.1CVSS

6AI Score

0.0005EPSS

2023-06-26 10:15 AM
10
cve
cve

CVE-2019-20211

The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via Listing Address, Listing Latitude, Listing Longitude, Email Address, Description, Name, Job or Position, Description, Service Name, Address, Latitude, Longitude, Phone....

6.1CVSS

5.9AI Score

0.007EPSS

2020-01-13 06:15 PM
56
cve
cve

CVE-2019-20212

The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via the chat widget/page message...

6.1CVSS

5.9AI Score

0.005EPSS

2020-01-13 06:15 PM
61
cve
cve

CVE-2019-20210

The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Reflected XSS via a search...

6.1CVSS

5.9AI Score

0.009EPSS

2020-01-13 06:15 PM
64
cve
cve

CVE-2019-20209

The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow nsecure Direct Object Reference (IDOR) via wp-admin/admin-ajax.php to delete any...

7.5CVSS

7.4AI Score

0.007EPSS

2020-01-13 06:15 PM
61