Medium severity6.1NVD Advisory· Published Jan 23, 2017· Updated Jun 17, 2026
CVE-2016-0765
CVE-2016-0765
Description
Multiple cross-site scripting (XSS) vulnerabilities in eshop-orders.php in the eShop plugin 6.3.14 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) page or (2) action parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:elfden:eshop_plugin:6.3.14:*:*:*:*:wordpress:*:*
Patches
Vulnerability mechanics
References
3- www.openwall.com/lists/oss-security/2016/02/02/3nvdExploitThird Party Advisory
- www.vapid.dhs.org/advisory.phpnvdExploitThird Party Advisory
- www.securityfocus.com/bid/82347nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.