ThreatPress

WordPress Vulnerability Database

Back

WordPress MedZone Lite <=1.2.5 - Unauthenticated Function Injection vulnerability

Product
MedZone Lite
Description
Unauthenticated Function Injection vulnerability found by Jerome Bruandet (NinTechNet) in WordPress MedZone Lite (versions <=1.2.5).
Solution
Update the WordPress MedZone Lite to the latest available version (at least 1.2.6).
Classification
Type Unknown
OWASP Top 10 A1: Injection
References
Vulnerability details
Theme changelog
CVE
Name CVE-N/A
Versions
Affected In <=1.2.5
Fixed In 1.2.6
Disclosure date
2020-10-01
Credits
Jerome Bruandet (NinTechNet)