WordPress OneTone theme <= 3.0.6 - Unauthenticated options change vulnerability

2020-04-0300:00:00

NinTechNet

patchstack.com

EPSS

0.001

Percentile

47.5%

Unauthenticated options change vulnerability discovered by NinTechNet in WordPress OneTone theme (versions <= 3.0.6).

Solution

           No patched version is available.

blog.nintechnet.com/unauthenticated-stored-xss-vulnerability-in-wordpress-onetone-theme-unpatched/

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17230

EPSS

0.001

Percentile

47.5%

Related for PATCHSTACK:9C6EC5B4A122E5A4946A28A4E8FB6E6C