Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbRandom RobbieWPVDB-ID:F434AFD3-7DE4-4BF4-A9BB-9F9AEAAE1DC5
HistoryAug 14, 2023 - 12:00 a.m.

Multiple Themes - Reflected XSS

2023-08-1400:00:00
Random Robbie
wpscan.com
7
themes
reflected xss
search box
unauthenticated attacker
malicious link
software

AI Score

6.1

Confidence

High

EPSS

0.001

Percentile

51.2%

JSON

Description The themes suffer from the same issue about the search box reflecting the results causing XSS which allows an unauthenticated attacker to exploit against users if they click a malicious link.

PoC

https://example.com/?s=katana![](/)/asd/

Related

prion 1
cvelist 1
cve 5
wpexploit 1
nuclei 1
nvd 5
wordfence 1
prion
prion
Code injection
2023-09-04 12:15:00
cvelist
cvelist
CVE-2023-2813 Multiple Themes - Reflected XSS
2023-09-04 11:27:00
cve
cve
CVE-2023-2813
2023-09-04 12:15:08
CVE-2024-1864
2024-02-27 22:15:14
CVE-2024-1788
2024-03-04 13:15:44
wpexploit
wpexploit
Multiple Themes - Reflected XSS
2023-08-14 00:00:00
nuclei
nuclei
Wordpress Multiple Themes - Reflected Cross-Site Scripting
2023-09-15 12:49:17
nvd
nvd
CVE-2023-2813
2023-09-04 12:15:08
CVE-2024-1865
2024-02-27 22:15:14
CVE-2024-1788
2024-03-04 13:15:44
wordfence
wordfence
Wordfence Intelligence Weekly WordPress Vulnerability Report (August 14, 2023 to August 20, 2023)
2023-08-24 14:03:10

AI Score

6.1

Confidence

High

EPSS

0.001

Percentile

51.2%

JSON
Related for WPVDB-ID:F434AFD3-7DE4-4BF4-A9BB-9F9AEAAE1DC5
prion1cvelist1cve5wpexploit1nuclei1nvd5wordfence1