Описание
Cross-site scripting (XSS) vulnerability in index.php in the Blue Memories theme 1.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter, possibly a related issue to CVE-2007-2757 and CVE-2007-4014. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Комментарий
http://xuyiyang.com/wordpress-themes/blue-memories - This website is the homepage of Blue Memories 1.5 theme for Wordpress. The theme was developed by Xu Yiyang.
Ссылки
- Vendor Advisory
- Broken Link
- Third Party AdvisoryVDB Entry
- Broken LinkThird Party Advisory
- VDB Entry
- Vendor Advisory
- Broken Link
- Third Party AdvisoryVDB Entry
- Broken LinkThird Party Advisory
- VDB Entry
Уязвимые конфигурации
EPSS
4.3 Medium
CVSS2
Дефекты
Связанные уязвимости
Cross-site scripting (XSS) vulnerability in index.php in the Blue Memories theme 1.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter, possibly a related issue to CVE-2007-2757 and CVE-2007-4014. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Cross-site scripting (XSS) vulnerability in index.php in the Blue Memo ...
Cross-site scripting (XSS) vulnerability in index.php in the Blue Memories theme 1.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter, possibly a related issue to CVE-2007-2757 and CVE-2007-4014. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
EPSS
4.3 Medium
CVSS2