An Unauthenticated Reflected XSS & XFS vulnerabilities was discovered in the Love Travel theme for WordPress, affected versions: 2.0-3.8. Vulnerable parameters: keyword, date_from, date_to, price_from_to, nicdark_price_from, nicdark_price_to
The PoC will be displayed once the issue has been remediated
Ex.Mi
Ex.Mi
Yes
2020-11-12 (about 2 years ago)
2020-11-12 (about 2 years ago)
2023-06-13 (about 3 months ago)