Newspaper Theme <= 9.2.2 - Cross-Site Scripting (XSS)



Description
From the changelog:

Newspaper - Version: 9.2.2

fix: XSS Security issue.

Affects Theme

fixed in version 9.5

References

URL https://themeforest.net/item/newspaper/5489609
URL https://tagdiv.com/newspaper/

Classification

Type XSS
OWASP Top 10 A7: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Original Researcher Unknown
Submitter Noman Riffat
Submitter Twitter nomanriffat
Views 14394
Verified No
WPVDB ID 9218

Timeline

Publicly Published 2019-02-14 (9 months ago)
Added 2019-02-14 (9 months ago)
Last Updated 2019-11-01 (13 days ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin