2018 September

wp-security

04 Sep: WP Security: 1 premium theme vulnerability in AUG 2018

For your WP Security, be informed about the latest vulnerabilities in WordPress themes: Supreme Directory Theme Unauthenticated Cross-Site Scripting (XSS) reported by Franciny Salles and Flavio Landivar (http://www.hackingxsolutions.com/). This theme has a parameter, s, that allows execute a xss payload: ">". The software does not neutralize or incorrectly neutralizes user-controllable...