CVSS: 6.8EPSS: 1%CPEs: 1EXPL: 1CVE-2007-2757 – WordPress Theme Redoable 1.2 - 'header.php?s' Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2007-2757
Multiple cross-site scripting (XSS) vulnerabilities in Redoable 1.2 allow remote attackers to inject arbitrary web script or HTML via the s parameter to (1) wp-content/themes/redoable/searchloop.php or (2) wp-content/themes/redoable/header.php. Múltiples vulnerabilidades en secuencias de comandos en sitios cruzados (XSS) en el Redoable 1.2 permiten a atacantes remotos inyectar secuencias de comandos web o HTML de su elección a través del parámetro s en el (1) wp-content/themes/redoable/searchloop.php o en el (2) wp-content/themes/redoable/header.php. • https://www.exploit-db.com/exploits/30050 http://osvdb.org/37040 http://osvdb.org/37041 http://redlevel.org/wp-content/uploads/redoable.txt http://secunia.com/advisories/25310 http://securityreason.com/securityalert/2721 http://www.securityfocus.com/archive/1/468892/100/0/threaded http://www.securityfocus.com/bid/24037 https://exchange.xforce.ibmcloud.com/vulnerabilities/34363 •