The Grand News theme for WordPress has a security issue called Reflected Cross-Site Scripting. This can happen in versions up to 3.4.3 because the theme does not properly protect against harmful code being added to web pages. This means that someone who is not logged in could potentially add dangerous scripts to a page that will run when a user clicks on a link.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
