The Anon theme for WordPress has a security issue called Reflected Cross-Site Scripting. This can happen in versions up to 2.2.10 because the theme does not properly check and remove harmful code. This means that someone who is not logged in can put harmful code into a page and make it run if they can fool a user into doing something, like clicking on a link.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
