WP Security: 3 theme vulnerabilities in May 2019

WP Security: 3 theme vulnerabilities in May 2019

WP Security bulletin – May 2019

At your next scheduled WordPress Maintenance, be advised for your WP Security about the latest 3 vulnerabilities in a premium WordPress theme identified and reported publicly in May 2019. As these vulnerabilities are disclosed, when you use one (or more) of these outdated themes (main theme, child theme) – your risking serious WordPress security breaches.


  • JobCareer | Job Board Responsive WordPress Theme
    • Stored XSS reported by QUIXSS (defcon.su). Bad input fields data filtering has been discovered in the «JobCareer | Job Board Responsive WordPress Theme».
      • WordPress Safety recommendation: immediately upgrade to version 2.5.1 to fix the vulnerability.

    • Traveler – Travel Booking WordPress Theme
      • Reflected & Stored XSS reported by QUIXSS (defcon.su). Weak security measures like no input & textarea fields data filtering has been discovered in the «Traveler – Travel Booking WordPress Theme».
        • WordPress Safety recommendation: immediately upgrade to version 2.7.2 to fix the vulnerability.

      • CarSpot – Automotive Car Dealer WordPress Classified Theme
        • Authenticated Stored XSS reported by QUIXSS (defcon.su). Bad input field data filtering has been discovered in the «CarSpot – Automotive Car Dealer WordPress Classified Theme». Current version of this Premium Theme is 2.1.5.
          • WordPress Safety recommendation: immediately upgrade to version 2.1.7 to fix the vulnerability.
      •  


Protect your WordPress: BEFORE IT’S TOO LATE! You will also protect your customers, your reputation and your online business!

Do you have any concerns with WP Security? Leave your thoughts in the comments below!

Related Posts

Leave a comment

Do NOT follow this link or you will be banned from the site!