Bridge Theme <= 11.1 - DOM Cross-Site Scripting (XSS)

Affects Theme

bridge
fixed in version 11.2

References

CVE 2017-13138
URL http://bridge.qodeinteractive.com/change-log/
URL https://themeforest.net/item/bridge-creative-multipurpose-wordpress-theme/7315054

Classification

Type XSS
OWASP Top 10 A3: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Submitter ethicalhack3r
Submitter Website https://dewhurstsecurity.com/
Submitter Twitter ethicalhack3r
Views 5136
Verified No
WPVDB ID 8892

Timeline

Publicly Published 2017-08-08 (almost 2 years ago)
Added 2017-08-25 (almost 2 years ago)
Last Updated 2018-08-29 (11 months ago)