Newspaper Theme 6.4–6.7.1 - Privilege Escalation

Newspaper Theme versions 6.4 to 6.7.1 for WordPress lacked proper options access control through tdajaxupdatepanel, which led to a Privilege Escalation vulnerability. id: CVE-2016-10972 info: name: Newspaper Theme 6.4–6.7.1 - Privilege Escalation author: pussycat0x severity: critical description:...

CVE-2016-10972

The newspaper theme before 6.7.2 for WordPress has a lack of options access control via tdajaxupdatepanel...

CVE-2016-10972

The newspaper theme before 6.7.2 for WordPress has a lack of options access control via tdajaxupdatepanel...

CVE-2016-10972

Newspaper Theme for WordPress versions 6.4–6.7.1 has a Privilege Escalation vulnerability caused by lack of options access control through td_ajax_update_panel. Unauthenticated attackers can escalate to administrator level, gaining full control over the WordPress site. Remediation: update to News...

EUVD-2016-1963

The newspaper theme before 6.7.2 for WordPress has a lack of options access control via tdajaxupdatepanel...