WordPress Fusion theme version 3.1 suffers from a remote file upload vulnerability.
a102bea6c53a81b928c710f5399b08b8WordPress Oberliga Theme suffers from a remote SQL injection vulnerability.
a349c8393ee82075ee230c57dbbe096fWordPress Malmonation theme suffers from a remote SQL injection vulnerability. Note that this theme is specific to this site.
34ec2a0afc7159d1707ec7c972d7e604WordPress Magazine Basic third party plugin theme suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
29f3516bbb72262fb6de2377a91beaceWordPress Madebymilk theme suffers from a remote SQL injection vulnerability.
0f30626e26474181469acd1103319958WordPress Dailyedition-mouss theme suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
cea6f2d3689d743cb2f8176b0ad6d6ffWordPress ArribaLaEsteban theme suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
a079d97c998de7a98bf3e0b199495287The WordPress Kakao theme suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
89d268b203e4587b0ab19bf779716897WordPress Themesbook suffers from a cross site scripting vulnerability. Note that these findings house site-specific data.
ea150cc3bf5f5a7fdf3ee23cac4a4838Archin WordPress theme version 3.2 suffers from an unauthenticated configuration access vulnerability.
dda7a46e8d46019bada27cf8be3eeb72Secunia Security Advisory - DigiP has reported a vulnerability in the Archin theme for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks and compromise a vulnerable system.
ad75d87c70baf87be1b5e8e3386fc2b0The Archin WordPress theme suffers from cross site scripting and various handling vulnerabilities.
b2f3aa41693b19472b34affa70792389Gentoo Linux Security Advisory 201209-9 - A vulnerability has been found in Atheme which may lead to Denial of Service or a bypass of security restrictions. Versions less than 6.0.10 are affected.
2804fa23379148108ea4b00be53cf3efSecunia Security Advisory - Gentoo has issued an update for atheme. This fixes a vulnerability, which can be exploited by malicious users to bypass certain security restrictions or cause a DoS (Denial of Service).
eefa29bc6e388bbb288347b9cf696716Secunia Security Advisory - Multiple vulnerabilities have been reported in the Purity theme for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
b0dadb70e5bdedf2a7bcf221937c65deSecunia Security Advisory - A vulnerability has been reported in the Inf08 theme for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
e30a86773d04ba91c66746e7581ad553ShopperPress WordPress theme version 2.7 suffers from cross site scripting vulnerabilities.
208ecb5c6407d2aface4e45643669151The ShopperPress WordPress theme version 2.7 suffers from a remote SQL injection vulnerability.
db008f009f691d425c907525c3c37394Secunia Security Advisory - A vulnerability has been reported in the Elegant theme for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
dd7cb6d3b1cb3facc90c3e7c5e7e6d6dDrupal Elegant Theme third party module version 7.x suffers from a cross site scripting vulnerability.
93e1dd81ddd5ebda197e62d31db8ed27Multiple Site5 WordPress themes suffer from an email spoofing vulnerability.
8ee788e01e90d38fc925f3f852e0a77cThis Metasploit module exploits a php unserialize() vulnerability in SugarCRM versions 6.3.1 and below which could be abused to allow authenticated SugarCRM users to execute arbitrary code with the permissions of the webserver. The dangerous unserialize() exists in the 'include/MVC/View/views/view.list.php' script, which is called with user controlled data from the 'current_query_by_page' parameter. The exploit abuses the __destruct() method from the SugarTheme class to write arbitrary PHP code to a 'pathCache.php' on the web root.
7d01dafa74c844c1735769142b67e3acWordPress Famous theme version 2.0.5 suffers from a remote shell upload vulnerability.
d80ebc5f5384b71489abee66588431b7WordPress Deep-Blue theme version 1.9.2 suffers from a remote shell upload vulnerability.
c54dba08e4fb318be12ac89afcf60e77Secunia Security Advisory - Sammy Forgit has discovered a vulnerability in the Famous and Deep Blue themes for WordPress, which can be exploited by malicious people to compromise a vulnerable system.
e1a8f0ce7cab74d02a1ef7570e57a681Secunia Security Advisory - A vulnerability has been discovered in the Theme My Login plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
25cac8ad128b426f36c74285ea2b9a73
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed