Soledad Security Vulnerabilities and Issues — Soledad CVE List

Lucene search

PencidesignSoledad

2 matches found

CVE•added 2022/10/10 9:15 p.m.•54 views

CVE-2022-3209

The soledad WordPress theme before 8.2.5 does not sanitise the {id,datafilter[type],...} parameters in its penci_more_slist_post_ajax AJAX action, leading to a Reflected Cross-Site Scripting (XSS) vulnerability.

6.1CVSS5.9AI score0.00135EPSS

CVE•added 2022/11/18 11:15 p.m.•44 views

CVE-2022-41788

Auth. (subscriber+) Cross-Site Scripting (XSS) vulnerability in Soledad premium theme

5.4CVSS5.3AI score0.00109EPSS