Mageewp Onetone vulnerabilities
2 known vulnerabilities affecting mageewp/onetone.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
2
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2019-17231P1MEDIUMCVSS 6.1ExploitedPoC≤ 3.0.62020-04-03
CVE-2019-17231 [MEDIUM] CWE-79 CVE-2019-17231: includes/theme-functions.php in the OneTone theme through 3.0.6 for WordPress has multiple stored XS
includes/theme-functions.php in the OneTone theme through 3.0.6 for WordPress has multiple stored XSS issues.
nvd
CVE-2019-17230P2MEDIUMCVSS 5.3ExploitedPoC≤ 3.0.62020-04-03
CVE-2019-17230 [MEDIUM] CVE-2019-17230: includes/theme-functions.php in the OneTone theme through 3.0.6 for WordPress allows unauthenticated
includes/theme-functions.php in the OneTone theme through 3.0.6 for WordPress allows unauthenticated options changes.
nvd