VYPR

MyThemeShop Launcher

by WordPress

CVEs (1)

  • CVE-2019-7411MedMay 13, 2019
    risk 0.35cvss 5.4epss 0.01

    Multiple stored cross-site scripting (XSS) in the MyThemeShop Launcher plugin 1.0.8 for WordPress allow remote authenticated users to inject arbitrary web script or HTML via fields as follows: (1) Title, (2) Favicon, (3) Meta Description, (4) Subscribe Form (Name field label,…