ThreatPress

WordPress Vulnerability Database

Back

WordPress Pixova Lite theme <=2.0.6 - Unauthenticated Function Injection vulnerability

Product
Pixova Lite
Description
Unauthenticated Function Injection vulnerability found by Jerome Bruandet (NinTechNet) in WordPress Pixova Lite theme (versions <=2.0.6).
Solution
Update the WordPress Pixova Lite theme to the latest available version (at least 2.0.7).
Classification
Type Unknown
OWASP Top 10 A1: Injection
References
Theme changelog
Vulnerability details
CVE
Name CVE-N/A
Versions
Affected In <=2.0.6
Fixed In 2.0.7
Disclosure date
2020-10-01
Credits
Jerome Bruandet (NinTechNet)