CVE-2016-10972
Newspaper Theme for WordPress versions 6.4–6.7.1 has a Privilege Escalation vulnerability caused by lack of options access control through td_ajax_update_panel. Unauthenticated attackers can escalate to administrator level, gaining full control over the WordPress site. Remediation: update to News...