Vulnerabilities > Tagdiv > Newspaper > 10.3.9.1

DATE CVE VULNERABILITY TITLE RISK
2022-10-31 CVE-2022-2167 Cross-site Scripting vulnerability in Tagdiv Newspaper
The Newspaper WordPress theme before 12 does not sanitise a parameter before outputting it back in an HTML attribute via an AJAX action, leading to a Reflected Cross-Site Scripting
network
low complexity
tagdiv CWE-79
6.1
6.1
2022-10-31 CVE-2022-2627 Cross-site Scripting vulnerability in Tagdiv Newspaper
The Newspaper WordPress theme before 12 does not sanitise a parameter before outputting it back in an HTML attribute via an AJAX action, leading to a Reflected Cross-Site Scripting.
network
low complexity
tagdiv CWE-79
6.1
6.1
2021-07-19 CVE-2021-3135 Cross-site Scripting vulnerability in Tagdiv Newspaper 10.3.9.1
An issue was discovered in the tagDiv Newspaper theme 10.3.9.1 for WordPress.
network
tagdiv CWE-79
4.3
4.3