VULNERABILITIES / FIXES - May 24, 2013
by Carol~ - 5/24/13 7:24 AM
WordPress SmartStart Theme VideoJS Cross-Site Scripting Vulnerability
Release Date : 2013-05-24
Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status: Unpatched
Software: WordPress SmartStart Theme
A vulnerability has been reported in the SmartStart theme for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
The vulnerability is caused due to a bundled vulnerable version of VideoJS.
No official solution is currently available.