Vulnerabilities > CVE-2022-4114 - Unspecified vulnerability in Apusthemes Superio

CVSS 5.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

apusthemes

NVD

Published: 2023-01-02

Updated: 2024-11-21

Summary

The Superio WordPress theme does not sanitise and escape some parameters, which could allow users with a role as low as a subscriber to perform Cross-Site Scripting attacks.

Vulnerable Configurations

Part	Description	Count
Application	Apusthemes Apusthemes Superio *	1

References

https://themeforest.net/item/superio-job-board-wordpress-theme/32180231
https://themeforest.net/item/superio-job-board-wordpress-theme/32180231
https://wpscan.com/vulnerability/7569f4ac-05c9-43c9-95e0-5cc360524bbd
https://wpscan.com/vulnerability/7569f4ac-05c9-43c9-95e0-5cc360524bbd