CVE-2016-10953 (headway)

The Headway theme before 3.8.9 for WordPress has XSS via the license key field.

View Full Alert

Related Posts

  • CVE-2016-10937

    IMAPFilter through 2.6.12 does not validate the hostname in an SSL certificate. View Full Alert

  • CVE-2016-10761

    Logitech Unifying devices before 2016-02-26 allow keystroke injection, bypassing encryption, aka MouseJack. View Full Alert

  • CVE-2016-10814

    cPanel before 57.9999.54 allows demo-mode escape via show_template.stor (SEC-119). View Full Alert