Themes Vulnerabilities

Elegant Grunge 1.0.3 - s Parameter XSS

Description

The Elegant Grunge WordPress theme was affected by a s Parameter XSS security vulnerability.

Affects Themes

elegant-grunge
Fixed in 1.0.4

References

CVE
CVE-2011-3856

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Verified
No
WPVDB ID
6170aa20-c1a5-4113-af53-98c7288205a2

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2024-02-26
Title
postMash – custom post order <= 1.2.0 - Reflected Cross-Site Scripting via m
Published
2024-05-06
Title
Content Views – Post Grid & Filter, Recent Posts, Category Posts, & More (Gutenberg Blocks and Shortcode) < 3.7.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via pagingType Parameter
Published
2021-09-09
Title
Dropdown and scrollable Text < 2.1 - Reflected Cross-Site Scripting
Published
2025-09-22
Title
SQL Chart Builder <= 2.3.7.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2022-09-19
Title
Social Rocket < 1.3.3 - Admin+ Stored Cross-Site Scripting