Test ID:	1.3.6.1.4.1.25623.1.0.807057
Category:	Web application abuses
Title:	WordPress Titan Framework < 1.6 Multiple XSS Vulnerabilities
Summary:	The WordPress plugin 'Titan Framework' is prone to multiple cross-site scripting (XSS) vulnerabilities.
Description:	Summary: The WordPress plugin 'Titan Framework' is prone to multiple cross-site scripting (XSS) vulnerabilities. Vulnerability Insight: Multiple flaws are due to: - An insufficient validation of user supplied input via 't' parameter to 'iframe-googlefont-preview.php' script. - An insufficient validation of user supplied input via 'text' parameter to 'iframe-font-preview.php' script. Vulnerability Impact: Successful exploitation will allow remote attackers to execute arbitrary HTML and script code in a user's browser session in the context of an affected site. Affected Software/OS: WordPress Titan Framework plugin version before 1.6 Solution: Update to version 1.6 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-6444 https://research.g0blin.co.uk/cve-2014-6444/ https://wpvulndb.com/vulnerabilities/8233
Copyright	Copyright (C) 2016 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.