ThreatPress

WordPress Vulnerabilities Database

Back

WordPress ShopperPress Theme - SQL Injection and Cross Site Scripting Vulnerabilities

Product
ShopperPress
Description
WordPress ShopperPress Theme is prone to SQL injection and cross site scripting vulnerabilities. These vulnerabilities allow an attacker to compromise the application, access or modify data, also, steal cookie-based authentication credentials.
Solution
Update the theme.
Classification
Type Multi
References
Exploit-DB
CVE
Name CVE-N/A
Versions
Affected In <= 2.7
Fixed In 2.8
Disclosure date
2012-08-02
Credits
Benjamin Kunz Mejri