RSS   Vulnerabilities for 'Catch breadcrumb'   RSS

2020-04-23
 
CVE-2020-12054

CWE-79
 

 
The Catch Breadcrumb plugin before 1.5.4 for WordPress allows Reflected XSS via the s parameter (a search query). Also affected are 16 themes (if the plugin is enabled) by the same author: Alchemist and Alchemist PRO, Izabel and Izabel PRO, Chique and Chique PRO, Clean Enterprise and Clean Enterprise PRO, Bold Photography PRO, Intuitive PRO, Devotepress PRO, Clean Blocks PRO, Foodoholic PRO, Catch Mag PRO, Catch Wedding PRO, and Higher Education PRO.

 

 >>> Vendor: Catchplugins 11 Products
Catch breadcrumb
Catch scroll progress bar
Catch sticky menu
Catch themes demo import
Catch under construction
Catch web tools
Essential content types
Essential widgets
Generate child theme
Header enhancement
To top


Copyright 2024, cxsecurity.com

 

Back to Top