Multiple cross-site scripting (XSS) vulnerabilities in Redoable 1.2 allow remote malicious users to inject arbitrary web script or HTML via the s parameter to (1) wp-content/themes/redoable/searchloop.php or (2) wp-content/themes/redoable/header.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dean j robinson redoable 1.2 |