The Flatsome theme for WordPress has an issue that makes it vulnerable to attack. In versions up to 3.17.5, if someone with malicious intentions were to send input to the theme, it could be deserialized and an attacker could inject a PHP Object. This could allow the attacker to delete files, get access to sensitive information, or execute code.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
