WordPress ScoreMe Theme - Cross Site Scripting
- Because of this vulnerability in the "s" value of the "index.php" file, remote attackers are able to inject own malicious script codes to the client-side of the affected web-application.
- Update the theme.
Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
- Name CVE-N/A
Fixed In 1.1
- Disclosure date