The PressMart theme for WordPress, called Modern Elementor WooCommerce, has a vulnerability that allows anyone to run shortcodes without proper validation. This can be done in all versions up to and including 1.2.16. This means that anyone, even without an account, can run any shortcode they want.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
