The Fruitful Theme for WordPress is prone to a security issue called Stored Cross-Site Scripting. This means that when a user with at least subscriber-level permissions accesses a page with malicious code, that code will be executed. Versions of the Fruitful Theme up to and including 3.8.1 are vulnerable to this as they do not properly sanitize and escape input and output.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
