vendor:
Chocolate WP Theme for WordPress
by:
SecurityFocus
7,5
CVSS
HIGH
Denial-of-Service, Arbitrary File Upload, and Arbitrary Script Code Execution
20, 434, 79
CWE
Product Name: Chocolate WP Theme for WordPress
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: Yes
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2012
Chocolate WP Theme for WordPress Multiple Security Vulnerabilities
The Chocolate WP Theme for WordPress is prone to multiple security vulnerabilities. An attacker may leverage these issues to cause denial-of-service conditions, upload arbitrary files to the affected computer, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.
Mitigation:
Users should ensure that the application is kept up-to-date with the latest security patches and updates.
