ThreatPress

WordPress Vulnerability Database

Back

WordPress NewsMag theme <= 2.4.1 - Unauthenticated Function Injection vulnerability

Product
NewsMag
Description
Unauthenticated Function Injection vulnerability found by Jerome Bruandet (NinTechNet) WordPress NewsMag theme (versions <= 2.4.1).
Solution
Update the WordPress NewsMag theme to the latest available version (at least 2.4.2).
Classification
Type Unknown
OWASP Top 10 A1: Injection
References
Theme changelog
CVE
Name CVE-N/A
Versions
Affected In <= 2.4.1
Fixed In 2.4.2
Disclosure date
2020-10-01
Credits
Jerome Bruandet (NinTechNet)