CVE-2016-1000131
The CVE refers to WordPress e-search plugin (version 1.0 and earlier) with a reflected cross-site scripting (XSS) vulnerability. The nuclei template specifies exploitation via the title_az.php endpoint, allowing an attacker to execute arbitrary scripts in a user’s browser and potentially steal co...