ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Zoner - Real Estate premium theme <= 4.1 - Reflected & Stored Cross-Site Scripting (XSS) vulnerability

Product
Zoner - Real Estate
Description
Reflected & Stored Cross-Site Scripting (XSS) vulnerability found by QUIXSS in WordPress Zoner - Real Estate premium theme (versions <= 4.1).
Solution
Update the WordPress Zoner - Real Estate premium theme to the latest available version (at least 4.1.1).
Classification
Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
References
Theme page
CVE
Name CVE-N/A
Versions
Affected In <= 4.1
Fixed In 4.1.1
Disclosure date
2019-07-05
Credits
QUIXSS
Submitter
ThreatPress