mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-28 23:51:26 +02:00
0xMarcio
808 B
808 B
CVE-2016-10961
Description
The colorway theme before 3.4.2 for WordPress has XSS via the contactName parameter.
POC
Reference
- https://sumofpwn.nl/advisory/2016/cross_site_scripting_vulnerability_in_colorway_wordpress_theme.html
- https://sumofpwn.nl/advisory/2016/cross_site_scripting_vulnerability_in_colorway_wordpress_theme.html
- https://wpvulndb.com/vulnerabilities/8568
- https://wpvulndb.com/vulnerabilities/8568