Description
Cross-site scripting (XSS) vulnerability in the Trending theme before 0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the cpage parameter.
Exploits (1)
References (1)
Core 1
Core References
Exploit, URL Repurposed x_refsource_misc
https://sitewat.ch/en/Advisories/17
Scores
EPSS
0.0037
EPSS Percentile
58.9%
Details
CWE
CWE-79
Status
published
Products (1)
themehybrid/trending
< 0.1
Published
Sep 28, 2011
Tracked Since
Feb 18, 2026