logo
DATABASE RESOURCES PRICING ABOUT US

Goto < 2.1 - Reflected Cross-Site Scripting (XSS)

Description

The theme did not properly sanitize the formvalue JSON POST parameter in its tl_filter AJAX action, leading to an unauthenticated Reflected Cross-site Scripting (XSS) vulnerability.


Related