Cross-Site Scripting Vulnerability in Atahualpa Theme for WordPress
CVE-2011-3850

Currently unrated

Key Information:

Vendor: Wordpress
Status: Atahualpa
Vendor: CVE Published:; 28 September 2011

Summary

A Cross-Site Scripting (XSS) vulnerability exists in the Atahualpa theme prior to version 3.6.8 for WordPress. This flaw allows remote attackers to inject arbitrary web scripts or HTML via the 's' parameter. If successfully exploited, this can lead to unauthorized access and manipulation of website content, posing a significant risk to website integrity and visitor security.

References

http://secunia.com/advisories/46297

third-party-advisoryx_refsource_SECUNIA

https://sitewat.ch/en/Advisories/8

x_refsource_MISC

https://wpvulndb.com/vulnerabilities/9788

x_refsource_MISC

Timeline

Vulnerability published
Sep 28, 2011
Vulnerability Reserved
Sep 27, 2011