The OnePress theme for WordPress has a security issue that makes it vulnerable to an attack called Stored Cross-Site Scripting. This can happen in versions 2.3.8 and earlier because the theme does not properly clean and protect user input. This means that someone who has author-level access or higher can insert harmful code into a page that will run whenever someone visits that page.
Detected in:
OnePress open vulnerable versions: >= * <= 2.3.8
The OnePress theme for WordPress has a security issue that makes it vulnerable to an attack called Stored Cross-Site Scripting. This can happen in versions 2.3.8 and earlier because the theme does not properly clean and protect user input. This means that someone who has author-level access or higher can insert harmful code into a page that will run whenever someone visits that page. Detected in: OnePress open vulnerable versions: >= * <= 2.3.8