Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in 12 Site5 themes

  • Severity: medium-risk
  • Status: Fixed
  • Publication: July 15, 2012

Various themes developed by Site5 for WordPress websites have a vulnerability that makes it possible for people who are not authenticated (or not allowed) to use the website to change the email addresses on the website. This could potentially enable them to perform malicious attacks on other users by using the fake email addresses.

Detected in:

alltuts fixed vulnerable versions: >= * < 2.0
boldy fixed vulnerable versions: >= * < 2.0
colorbold fixed vulnerable versions: >= * <= *
designpile fixed vulnerable versions: >= * <= *
diary fixed vulnerable versions: >= * < 2.0
journalcrunch fixed vulnerable versions: >= * < 2.0
prosume fixed vulnerable versions: >= * < 2.0
rockwell fixed vulnerable versions: >= * <= *
simplo fixed vulnerable versions: >= * <= *
webfolio fixed vulnerable versions: >= * < 2.0
Wise fixed vulnerable versions: >= * <= *
xmas fixed vulnerable versions: >= * <= *

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.