{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-0170", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-01-02T07:18:27.588Z", "datePublished": "2025-01-16T01:49:03.466Z", "dateUpdated": "2026-04-08T17:26:15.794Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:26:15.794Z"}, "affected": [{"vendor": "scriptsbundle", "product": "DWT - Directory & Listing WordPress Theme", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "3.3.3", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The DWT - Directory & Listing WordPress Theme is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 3.3.3 due to insufficient input sanitization and output escaping on the 'sort_by' and 'token' parameters. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link."}], "title": "DWT - Directory & Listing WordPress Theme <= 3.3.3 - Reflected Cross-Site Scripting", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/d607e7c0-7812-4c77-a763-6095677b3525?source=cve"}, {"url": "https://scriptsbundle.gitbook.io/dwt-directory-and-listing-wordpress-theme"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "cweId": "CWE-79", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "baseScore": 6.1, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "Istv\u00e1n M\u00e1rton"}], "timeline": [{"time": "2025-01-02T00:00:00.000Z", "lang": "en", "value": "Discovered"}, {"time": "2025-01-02T00:00:00.000Z", "lang": "en", "value": "Vendor Notified"}, {"time": "2025-01-15T00:00:00.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-01-16T15:31:29.139704Z", "id": "CVE-2025-0170", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-01-16T15:31:37.362Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-0170", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-01-16T15:31:29.139704Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-01-16T15:31:33.553Z"}}], "cna": {"title": "DWT - Directory & Listing WordPress Theme <= 3.3.3 - Reflected Cross-Site Scripting", "credits": [{"lang": "en", "type": "finder", "value": "Istv\u00e1n M\u00e1rton"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 6.1, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}}], "affected": [{"vendor": "scriptsbundle", "product": "DWT - Directory & Listing WordPress Theme", "versions": [{"status": "affected", "version": "*", "versionType": "semver", "lessThanOrEqual": "3.3.3"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-01-02T00:00:00.000Z", "value": "Discovered"}, {"lang": "en", "time": "2025-01-02T00:00:00.000Z", "value": "Vendor Notified"}, {"lang": "en", "time": "2025-01-15T00:00:00.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/d607e7c0-7812-4c77-a763-6095677b3525?source=cve"}, {"url": "https://scriptsbundle.gitbook.io/dwt-directory-and-listing-wordpress-theme"}], "descriptions": [{"lang": "en", "value": "The DWT - Directory & Listing WordPress Theme is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 3.3.3 due to insufficient input sanitization and output escaping on the 'sort_by' and 'token' parameters. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2025-01-16T01:49:03.466Z"}}}, "cveMetadata": {"cveId": "CVE-2025-0170", "state": "PUBLISHED", "dateUpdated": "2025-01-16T15:31:37.362Z", "dateReserved": "2025-01-02T07:18:27.588Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-01-16T01:49:03.466Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The DWT - Directory & Listing WordPress Theme is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 3.3.3 due to insufficient input sanitization and output escaping on the 'sort_by' and 'token' parameters. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link."}, {"lang": "es", "value": " El tema de WordPress DWT - Directory &amp; Listing es vulnerable a Cross-Site Scripting reflejado en versiones hasta la 3.3.3 incluida debido a una limpieza de entrada y escape de salida insuficiente en los par\u00e1metros 'sort_by' y 'token'. Esto hace posible que atacantes no autenticados inyecten scripts web arbitrarios en p\u00e1ginas que se ejecutan si logran enga\u00f1ar a un usuario para que realice una acci\u00f3n como hacer clic en un enlace."}], "id": "CVE-2025-0170", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-01-16T02:15:27.043", "references": [{"source": "security@wordfence.com", "url": "https://scriptsbundle.gitbook.io/dwt-directory-and-listing-wordpress-theme"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/d607e7c0-7812-4c77-a763-6095677b3525?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-21T22:29:24.231014+00:00", "value": {"mitigation_remediation": ["Update the DWT theme to the latest release that contains the XSS fix (Version\u00a03.3.4 or newer).", "If an immediate update is not possible, reconfigure the theme or the WordPress environment to strictly validate and encode the sort_by and token parameters, or block their usage through a security plugin.", "Deploy a site\u2011wide Content Security Policy that blocks inline script execution and enables browser XSS filtering to mitigate potential script injection."], "summary": {"action": "Immediate Patch", "impact": "Cross\u2011Site Scripting"}, "threat_synthesis": {"affected_systems": "This vulnerability affects the ScriptsBundle DWT\u200a\u2013\u200aDirectory & Listing WordPress Theme versions up to and including 3.3.3. No other vendors or product variants were identified as impacted by the CNA advisory. Any WordPress deployment using one of these affected theme releases is therefore at risk.", "description_and_impact": "The DWT\u200a\u2013\u200aDirectory & Listing WordPress Theme is affected by a reflected cross\u2011site scripting flaw. The bug stems from insufficient sanitization and output escaping on the sort_by and token URL parameters, allowing an attacker to inject arbitrary client\u2011side scripts when a victim follows a crafted link. This could enable defacement, credential theft, or execution of malicious actions in the victim\u2019s browser, depending on the user\u2019s privileges. The weakness is an instance of CWE\u201179, Improper Neutralization of Input During Web Page Generation.", "risk_and_exploitability": "The CVSS base score is 6.1, indicating a moderate severity for a reflected XSS vector. The EPSS score of less than 1% suggests that the probability of active exploitation at any given time is low, and the issue is not currently listed in CISA\u2019s KEV catalog. Nonetheless, because the attack requires only a malicious link and no authentication, a widespread social engineering campaign could effectively target users if the vulnerability remains unpatched."}}}}, "created": "2026-04-21T22:30:06.139596+00:00", "updated": "2026-04-21T22:30:06.139614+00:00", "vendors": []}