Cookie Consent by Free Privacy Policy Generator ๐Ÿ“Œ Authenticated XSS issue via theme uploads

๐Ÿ  Team IT Security News

TSecurity.de ist eine Online-Plattform, die sich auf die Bereitstellung von Informationen,alle 15 Minuten neuste Nachrichten, Bildungsressourcen und Dienstleistungen rund um das Thema IT-Sicherheit spezialisiert hat.
Ob es sich um aktuelle Nachrichten, Fachartikel, Blogbeitrรคge, Webinare, Tutorials, oder Tipps & Tricks handelt, TSecurity.de bietet seinen Nutzern einen umfassenden รœberblick รผber die wichtigsten Aspekte der IT-Sicherheit in einer sich stรคndig verรคndernden digitalen Welt.

16.12.2023 - TIP: Wer den Cookie Consent Banner akzeptiert, kann z.B. von Englisch nach Deutsch รผbersetzen, erst Englisch auswรคhlen dann wieder Deutsch!

Google Android Playstore Download Button fรผr Team IT Security



๐Ÿ“š Authenticated XSS issue via theme uploads


๐Ÿ’ก Newskategorie: Sicherheitslรผcken
๐Ÿ”— Quelle: portal.patchman.co

Unescaped variable could lead to authenticated XSS issue via theme uploads.

This vulnerability affects the following application versions:

  • WordPress 3.8
  • WordPress 3.8.1
  • WordPress 3.8.2
  • WordPress 3.8.3
  • WordPress 3.8.4
  • WordPress 3.8.5
  • WordPress 3.8.6
  • WordPress 3.8.7
  • WordPress 3.8.8
  • WordPress 3.8.9
  • WordPress 3.8.10
  • WordPress 3.8.11
  • WordPress 3.8.12
  • WordPress 3.8.13
  • WordPress 3.8.14
  • WordPress 3.8.15
  • WordPress 3.8.16
  • WordPress 3.8.17
  • WordPress 3.8.18
  • WordPress 3.8.19
  • WordPress 3.8.20
  • WordPress 3.8.21
  • WordPress 3.8.22
  • WordPress 3.8.23
  • WordPress 3.8.24
  • WordPress 3.8.25
  • WordPress 3.8.26
  • WordPress 3.8.27
  • WordPress 3.8.28
  • WordPress 3.8.29
  • WordPress 3.8.30
  • WordPress 3.8.31
  • WordPress 3.8.32
  • WordPress 3.8.33
  • WordPress 3.9
  • WordPress 3.9.1
  • WordPress 3.9.2
  • WordPress 3.9.3
  • WordPress 3.9.4
  • WordPress 3.9.5
  • WordPress 3.9.6
  • WordPress 3.9.7
  • WordPress 3.9.8
  • WordPress 3.9.9
  • WordPress 3.9.10
  • WordPress 3.9.11
  • WordPress 3.9.12
  • WordPress 3.9.13
  • WordPress 3.9.14
  • WordPress 3.9.15
  • WordPress 3.9.16
  • WordPress 3.9.17
  • WordPress 3.9.18
  • WordPress 3.9.19
  • WordPress 3.9.20
  • WordPress 3.9.21
  • WordPress 3.9.22
  • WordPress 3.9.23
  • WordPress 3.9.24
  • WordPress 3.9.25
  • WordPress 3.9.26
  • WordPress 3.9.27
  • WordPress 3.9.28
  • WordPress 3.9.29
  • WordPress 3.9.30
  • WordPress 3.9.31
  • WordPress 4.0
  • WordPress 4.0.1
  • WordPress 4.0.2
  • WordPress 4.0.3
  • WordPress 4.0.4
  • WordPress 4.0.5
  • WordPress 4.0.6
  • WordPress 4.0.7
  • WordPress 4.0.8
  • WordPress 4.0.9
  • WordPress 4.0.10
  • WordPress 4.0.11
  • WordPress 4.0.12
  • WordPress 4.0.13
  • WordPress 4.0.14
  • WordPress 4.0.15
  • WordPress 4.0.16
  • WordPress 4.0.17
  • WordPress 4.0.18
  • WordPress 4.0.19
  • WordPress 4.0.20
  • WordPress 4.0.21
  • WordPress 4.0.22
  • WordPress 4.0.23
  • WordPress 4.0.24
  • WordPress 4.0.25
  • WordPress 4.0.26
  • WordPress 4.0.27
  • WordPress 4.0.28
  • WordPress 4.0.29
  • WordPress 4.0.30
  • WordPress 4.1
  • WordPress 4.1.1
  • WordPress 4.1.2
  • WordPress 4.1.3
  • WordPress 4.1.4
  • WordPress 4.1.5
  • WordPress 4.1.6
  • WordPress 4.1.7
  • WordPress 4.1.8
  • WordPress 4.1.9
  • WordPress 4.1.10
  • WordPress 4.1.11
  • WordPress 4.1.12
  • WordPress 4.1.13
  • WordPress 4.1.14
  • WordPress 4.1.15
  • WordPress 4.1.16
  • WordPress 4.1.17
  • WordPress 4.1.18
  • WordPress 4.1.19
  • WordPress 4.1.20
  • WordPress 4.1.21
  • WordPress 4.1.22
  • WordPress 4.1.23
  • WordPress 4.1.24
  • WordPress 4.1.25
  • WordPress 4.1.26
  • WordPress 4.1.27
  • WordPress 4.1.28
  • WordPress 4.1.29
  • WordPress 4.1.30
  • WordPress 4.2
  • WordPress 4.2.1
  • WordPress 4.2.2
  • WordPress 4.2.3
  • WordPress 4.2.4
  • WordPress 4.2.5
  • WordPress 4.2.6
  • WordPress 4.2.7
  • WordPress 4.2.8
  • WordPress 4.2.9
  • WordPress 4.2.10
  • WordPress 4.2.11
  • WordPress 4.2.12
  • WordPress 4.2.13
  • WordPress 4.2.14
  • WordPress 4.2.15
  • WordPress 4.2.16
  • WordPress 4.2.17
  • WordPress 4.2.18
  • WordPress 4.2.19
  • WordPress 4.2.20
  • WordPress 4.2.21
  • WordPress 4.2.22
  • WordPress 4.2.23
  • WordPress 4.2.24
  • WordPress 4.2.25
  • WordPress 4.2.26
  • WordPress 4.2.27
  • WordPress 4.3
  • WordPress 4.3.1
  • WordPress 4.3.10
  • WordPress 4.3.11
  • WordPress 4.3.12
  • WordPress 4.3.13
  • WordPress 4.3.14
  • WordPress 4.3.15
  • WordPress 4.3.2
  • WordPress 4.3.3
  • WordPress 4.3.4
  • WordPress 4.3.5
  • WordPress 4.3.6
  • WordPress 4.3.7
  • WordPress 4.3.8
  • WordPress 4.3.9
  • WordPress 4.3.16
  • WordPress 4.3.17
  • WordPress 4.3.18
  • WordPress 4.3.19
  • WordPress 4.3.20
  • WordPress 4.3.21
  • WordPress 4.3.22
  • WordPress 4.3.23
  • WordPress 4.4
  • WordPress 4.4.1
  • WordPress 4.4.2
  • WordPress 4.4.3
  • WordPress 4.4.4
  • WordPress 4.4.5
  • WordPress 4.4.6
  • WordPress 4.4.7
  • WordPress 4.4.8
  • WordPress 4.4.9
  • WordPress 4.4.10
  • WordPress 4.4.11
  • WordPress 4.4.12
  • WordPress 4.4.13
  • WordPress 4.4.14
  • WordPress 4.4.15
  • WordPress 4.4.16
  • WordPress 4.4.17
  • WordPress 4.4.18
  • WordPress 4.4.19
  • WordPress 4.4.20
  • WordPress 4.4.21
  • WordPress 4.4.22
  • WordPress 4.5
  • WordPress 4.5.1
  • WordPress 4.5.2
  • WordPress 4.5.3
  • WordPress 4.5.4
  • WordPress 4.5.5
  • WordPress 4.5.6
  • WordPress 4.5.7
  • WordPress 4.5.8
  • WordPress 4.5.9
  • WordPress 4.5.10
  • WordPress 4.5.11
  • WordPress 4.5.12
  • WordPress 4.5.13
  • WordPress 4.5.14
  • WordPress 4.5.15
  • WordPress 4.5.16
  • WordPress 4.5.17
  • WordPress 4.5.18
  • WordPress 4.5.19
  • WordPress 4.5.20
  • WordPress 4.5.21
  • WordPress 4.6
  • WordPress 4.6.1
  • WordPress 4.6.2
  • WordPress 4.6.3
  • WordPress 4.6.4
  • WordPress 4.6.5
  • WordPress 4.6.6
  • WordPress 4.6.7
  • WordPress 4.6.8
  • WordPress 4.6.9
  • WordPress 4.6.10
  • WordPress 4.6.11
  • WordPress 4.6.12
  • WordPress 4.6.13
  • WordPress 4.6.14
  • WordPress 4.6.15
  • WordPress 4.6.16
  • WordPress 4.6.17
  • WordPress 4.6.18
  • WordPress 4.7
  • WordPress 4.7.1
  • WordPress 4.7.2
  • WordPress 4.7.3
  • WordPress 4.7.4
  • WordPress 4.7.5
  • WordPress 4.7.6
  • WordPress 4.7.7
  • WordPress 4.7.8
  • WordPress 4.7.9
  • WordPress 4.7.10
  • WordPress 4.7.11
  • WordPress 4.7.12
  • WordPress 4.7.13
  • WordPress 4.7.14
  • WordPress 4.7.15
  • WordPress 4.7.16
  • WordPress 4.7.17
  • WordPress 4.8
  • WordPress 4.8.1
  • WordPress 4.8.2
  • WordPress 4.8.3
  • WordPress 4.8.4
  • WordPress 4.8.5
  • WordPress 4.8.6
  • WordPress 4.8.7
  • WordPress 4.8.8
  • WordPress 4.8.9
  • WordPress 4.8.10
  • WordPress 4.8.11
  • WordPress 4.8.12
  • WordPress 4.8.13
  • WordPress 4.9
  • WordPress 4.9.1
  • WordPress 4.9.2
  • WordPress 4.9.3
  • WordPress 4.9.4
  • WordPress 4.9.5
  • WordPress 4.9.10
  • WordPress 4.9.11
  • WordPress 4.9.12
  • WordPress 4.9.13
  • WordPress 4.9.14
  • WordPress 4.9.6
  • WordPress 4.9.7
  • WordPress 4.9.8
  • WordPress 4.9.9
  • WordPress 5.0
  • WordPress 5.0.1
  • WordPress 5.0.2
  • WordPress 5.0.3
  • WordPress 5.0.4
  • WordPress 5.0.6
  • WordPress 5.0.7
  • WordPress 5.0.8
  • WordPress 5.0.9
  • WordPress 5.0 Beta 1
  • WordPress 5.0 Beta 2
  • WordPress 5.0 Beta 3
  • WordPress 5.0 Beta 4
  • WordPress 5.0 RC1
  • WordPress 5.0 RC2
  • WordPress 5.0 RC3
  • WordPress 5.1
  • WordPress 5.1.1
  • WordPress 5.1.2
  • WordPress 5.1.3
  • WordPress 5.1.4
  • WordPress 5.1.5
  • WordPress 5.2
  • WordPress 5.2.1
  • WordPress 5.2.2
  • WordPress 5.2.3
  • WordPress 5.2.4
  • WordPress 5.2.5
  • WordPress 5.2.6
  • WordPress 5.2 Beta 1
  • WordPress 5.2 Beta 2
  • WordPress 5.3
  • WordPress 5.3.1
  • WordPress 5.3.2
  • WordPress 5.3.3
  • WordPress 5.4
  • WordPress 5.4.1
...



๐Ÿ“Œ Authenticated XSS issue via theme uploads


๐Ÿ“ˆ 56.93 Punkte

๐Ÿ“Œ XSS-LOADER - XSS Payload Generator / XSS Scanner / XSS Dork Finder


๐Ÿ“ˆ 29.71 Punkte

๐Ÿ“Œ Rich FileManager v2.7.0 xss via file uploads Vulnerability


๐Ÿ“ˆ 28.57 Punkte

๐Ÿ“Œ ERPnext 11.x.x XSS via file uploads upload Vulnerability


๐Ÿ“ˆ 28.57 Punkte

๐Ÿ“Œ Infinity Market Classified Ads Script 1.6.1 xss via file uploads Vulnerability


๐Ÿ“ˆ 28.57 Punkte

๐Ÿ“Œ Infinity Market Classified Ads Script 1.6.2 xss via file uploads Vulnerability


๐Ÿ“ˆ 28.57 Punkte

๐Ÿ“Œ http://paristn.gov/wp-content/uploads/job-manager-uploads/company_logo/2017/06/Ps.gif


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://lanaodelnorte.gov.ph/wp-content/uploads/job-manager-uploads/company_logo/2017/06/melo.gif


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://www.kgetlengrivier.gov.za/wp-content/uploads/job-manager-uploads/company_logo/2017/06/AnonCoders.png


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://www.parliament.gov.fj/wp-content/uploads/job-manager-uploads/company_logo/2017/06/AnonCoders.png


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://bea.berkeley.edu/wp-content/uploads/job-manager-uploads/company_logo/2017/06/a.jpg


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://scet.berkeley.edu/wp-content/uploads/job-manager-uploads/company_logo/a.jpg


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://mexicopampanga.gov.ph/wp-content/uploads/job-manager-uploads/company_logo/2017/06/a.jpg


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://rededeinovacao.ac.gov.br/wp-content/uploads/job-manager-uploads/featured_image/2017/06/a.jpg


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ https://luponwd.gov.ph/wp-content/uploads/job-manager-uploads/company_logo/2017/06/a.jpg


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://bambantarlac.gov.ph/wp-content/uploads/job-manager-uploads/company_logo/a.jpg


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://subic.gov.ph/wp-content/uploads/job-manager-uploads/company_logo/2017/06/a.jpg


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ https://continuinged.isl.in.gov/wp-content/uploads/job-manager-uploads/company_logo/2017/06/a.jpg


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ https://datasci.berkeley.edu/wp-content/uploads/job-manager-uploads/company_logo/2017/06/a.jpg


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://jmsc.hku.hk/revamp/wp-content/uploads/job-manager-uploads/company_logo/2017/06/Ps.gif


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://www.jamaicapost.gov.jm/wp-content/uploads/job-manager-uploads/file/2017/06/by.gif


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://www.ebi.gov.eg/wp-content/uploads/job-manager-uploads/file/2017/06/by.gif


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://serradesaobento.rn.gov.br/wp-content/uploads/job-manager-uploads/file/2017/06/by.gif


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://www.salud.gob.sv/wp-content/uploads/job-manager-uploads/file/2017/06/by.gif


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://www.tourism.gov.mv/wp-content/uploads/job-manager-uploads/file/2017/06/by.gif


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://www.gorgas.gob.pa/wp-content/uploads/job-manager-uploads/file/2017/06/by.gif


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://iisdm.nyu.edu/wp-content/uploads/job-manager-uploads/company_logo/2017/06/kkk.jpg


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://www.corensc.gov.br/wp-content/uploads/job-manager-uploads/company_logo/2017/06/kkk.jpg


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://kznlegislature.gov.za/wp-content/uploads/job-manager-uploads/company_logo/2017/06/kkk.jpg


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://www.mineau.gov.mg/wp-content/uploads/job-manager-uploads/company_logo/2017/06/kkk.jpg


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://jobs.west-midlands.police.uk/wp-content/uploads/job-manager-uploads/company_logo/2017/06/kkk.jpg


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://www.busiacounty.go.ke/wp-content/uploads/job-manager-uploads/company_logo/2017/06/kkk.jpg


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://gabaldon.gov.ph/wp-content/uploads/job-manager-uploads/company_logo/2017/06/kkk.jpg


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://santaignaciatarlac.gov.ph/wp-content/uploads/job-manager-uploads/company_logo/2017/06/kkk.jpg


๐Ÿ“ˆ 28.26 Punkte

๐Ÿ“Œ http://www.balaoanlaunion.gov.ph/wp-content/uploads/job-manager-uploads/company_logo/2017/06/kkk.jpg


๐Ÿ“ˆ 28.26 Punkte











matomo