ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Flashnews Theme - Multiple Input Validation Vulnerabilities

Product
Flashnews
Description
This Flashnews theme is prone to multiple input-validation vulnerabilities. An attacker to disclose sensitive information, execute arbitrary script code in the browser, cause denial-of-service conditions or steal cookie-based authentication credentials. Other attacks are also possible.
Solution
Update the theme.
Classification
Type Multi
References
Exploit-DB
CVE
Name CVE-N/A
Versions
Affected In 1.0
Fixed In 1.1
Disclosure date
2013-02-02
Credits
MustLive