The Yolox theme for WordPress has a security issue called Local File Inclusion. This means that anyone can access and run files on the server without being logged in. This can be used to get around security measures, see private information, or run code. This can happen even with files that are considered safe, like images.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
