The Titan Framework plugin for WordPress had multiple security vulnerabilities which allowed remote attackers to add harmful code to a website. This code could be used to steal information or even take control of the website. The vulnerability was discovered in versions of the plugin before 1.6 and could be exploited by entering malicious code into the ‘t’ parameter of iframe-googlefont-preview.php or the ‘text’ parameter of iframe-font-preview.php.