Description
Cross-site scripting (XSS) vulnerability in index.php in the Blue Memories theme 1.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter, possibly a related issue to CVE-2007-2757 and CVE-2007-4014. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Remediation
References
Related Vulnerabilities
ASP.NET MVC Improper Input Validation Vulnerability (CVE-2017-0249)
WordPress Plugin Mapplic Lite Server-Side Request Forgery (1.0)
WordPress Plugin WP Frontend Profile Security Bypass (1.2.1)
WordPress Plugin Photo Gallery by 10Web-Mobile-Friendly Image Gallery SQL Injection (1.5.30)
Oracle Application Server Other Vulnerability (CVE-2007-0281)