CVE-2011-3863

RedLine < 1.66 - Cross-Site Scripting via s Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-3863. PoCs published by SiteWatch.

AI-analyzed exploit summary This exploit demonstrates a reflected XSS vulnerability in the RedLine WordPress theme by injecting a malicious script via the 's' parameter in the URL. The payload bypasses basic input sanitization to execute arbitrary JavaScript in the context of the affected site.

Description

Cross-site scripting (XSS) vulnerability in the RedLine theme before 1.66 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by SiteWatch · textwebappsphp
https://www.exploit-db.com/exploits/36191

This exploit demonstrates a reflected XSS vulnerability in the RedLine WordPress theme by injecting a malicious script via the 's' parameter in the URL. The payload bypasses basic input sanitization to execute arbitrary JavaScript in the context of the affected site.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: RedLine WordPress theme prior to 1.66
No auth needed
Prerequisites: A vulnerable version of the RedLine theme installed on a WordPress site · User interaction to visit the crafted URL
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References
Exploit, URL Repurposed x_refsource_misc
https://sitewat.ch/en/Advisories/22

Scores

EPSS 0.0313
EPSS Percentile 86.2%

Details

CWE
CWE-79
Status published
Products (25)
post-scriptum/redline 0.2.1
post-scriptum/redline 0.2.2
post-scriptum/redline 0.2.3
post-scriptum/redline 0.2.5
post-scriptum/redline 0.2.6
post-scriptum/redline 0.2.7
post-scriptum/redline 0.2.7.1
post-scriptum/redline 0.2.9
post-scriptum/redline 0.3
post-scriptum/redline 0.5
... and 15 more
Published Sep 28, 2011
Tracked Since Feb 18, 2026