Appthemes: >> Classipress >> 3.1.3 Security Vulnerabilities
Multiple cross-site scripting (XSS) vulnerabilities in the Classipress theme before 3.1.5 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) twitter_id parameter related to the Twitter widget and (2) facebook_id parameter related to the Facebook widget.
CVSS Score
4.3
EPSS Score
0.018
Published
2013-02-12