ByteOS Network

Starto

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

1Vulnerabilities found

CVE-2026-27352

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-7.1||HIGH

EPSS-0.04% / 11.64%

7 Day CHG~0.00%

Published-05 Mar, 2026 | 05:53

Updated-28 Apr, 2026 | 16:15

WordPress Starto theme < 2.2.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThemeGoods Starto starto allows Reflected XSS.This issue affects Starto: from n/a through < 2.2.5.

Vendor-ThemeGoods

Product-Starto

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')