The popular WordPress theme called The7 has a security flaw that allows hackers to inject harmful code into websites using the theme. This is because the theme does not properly clean or protect user input before displaying it on the website. As a result, attackers with certain levels of access can insert their own code into pages, which can harm users who visit those pages.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
