Sinisterly
WordPress problems. - Printable Version

+- Sinisterly (https://sinister.ly)
+-- Forum: Design (https://sinister.ly/Forum-Design)
+--- Forum: Web Design (https://sinister.ly/Forum-Web-Design)
+--- Thread: WordPress problems. (/Thread-WordPress-problems)

WordPress problems. - Hack3rcon - 01-18-2021

Hello,
I scanned my WordPress website with the Acunetix scanner and it found below Vulnerabilities:
Code:
Attack Details
URI was set to "><script>TVVV(9308)</script>
The input is reflected inside a tag parameter between double quotes.

Attack Details
URI was set to "><script>vNGC(9113)</script>
The input is reflected inside a tag parameter between double quotes.

How to fix this vulnerability
Apply context-dependent encoding and/or validation to user input rendered on a page.

Classification
CWE     CWE-79
CVSS    Base Score: 5.3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
        Attack Vector: Network
        Attack Complexity: Low
        Privileges Required: None
        User Interaction: None
        Scope: Unchanged
        Confidentiality: None
        Integrity: Low
        Availability: None

I'm using the last version of WordPress. How can I fix that Vulnerabilities?

Thank you.

RE: WordPress problems. - mothered - 01-19-2021

(01-18-2021, 07:55 PM)Hack3rcon Wrote: How can I fix that Vulnerabilities?
It's stated In the scan report.
Quote:How to fix this vulnerability
Apply context-dependent encoding and/or validation to user input rendered on a page.


RE: WordPress problems. - Hack3rcon - 01-28-2021

(01-19-2021, 08:56 AM)mothered Wrote:
(01-18-2021, 07:55 PM)Hack3rcon Wrote: How can I fix that Vulnerabilities?
It's stated In the scan report.
Quote:How to fix this vulnerability
Apply context-dependent encoding and/or validation to user input rendered on a page.
How to apply context-dependent encoding and/or validation to user input rendered on a page?

RE: WordPress problems. - lordcracker - 06-11-2021

I think you should check out your user registration settings I think the main problem is there.
Re check your plugins if there are mainly nulled most of them are infected and cause unexpected problems.
You can try to fix it with ithemes security pro Wordpress plugin and find it from a reputable source not those indian malware google links.

RE: WordPress problems. - ReepkuAlupa - 07-05-2022

Thank you, i have similar problem

RE: WordPress problems. - Schroep - 04-10-2023

Same hereā€¦ Thank you for the fix!

RE: WordPress problems. - Nanonoko - 05-09-2023

Hello! And where scanned, if not a secret?