ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Mesmerize theme <=1.6.89 - Authenticated Options Update vulnerability

Product
Mesmerize
Description
Authenticated Options Update vulnerability found by NinTechNet in WordPress Mesmerize theme (versions <=1.6.89).
Solution
Update the WordPress Mesmerize theme to the latest available version (at least 1.6.90).
Classification
Type Unknown
OWASP Top 10 A7: Missing Function Level Access Control
References
Theme changelog
CVE
Name CVE-N/A
Versions
Affected In <=1.6.89
Fixed In 1.6.90
Disclosure date
2019-12-02
Credits
NinTechNet
Submitter
ThreatPress