On March 14, 2023, the Wordfence Threat Intelligence team initiated the responsible disclosure process for 2 nearly identical Cross-Site Scripting vulnerabilities in the Weaver Xtreme theme and the Weaver Show Posts plugin, which each have over 10,000 installations. The plugin developer responded the same day and we provided full disclosure. Wordfence Premium, Care, and Response …Read More
The post Hiding in Plain Sight: Cross-Site Scripting Vulnerabilities Patched in Weaver Products appeared first on Wordfence.
Be sure to read the original article from Blog – Wordfence here: Read More