cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2025-0170,https://securityvulnerability.io/vulnerability/CVE-2025-0170,Reflected Cross-Site Scripting Vulnerability in DWT - Directory & Listing WordPress Theme,"The DWT - Directory & Listing WordPress Theme exhibits a significant vulnerability due to inadequate input sanitization and output escaping on the 'sort_by' and 'token' parameters. This flaw allows unauthenticated attackers to execute arbitrary web scripts on affected pages. By deceiving users into clicking malicious links, attackers can effectively manipulate web content, enhancing the risk of data theft and user compromise.",Wordpress,Dwt - Directory & Listing WordPress Theme,6.1,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,false,,2025-01-16T01:49:03.466Z,0