includes/wizard/wizard.php in the Ocean Extra plugin up to and including 1.5.8 for WordPress allows unauthenticated options changes and injection of a Cascading Style Sheets (CSS) token sequence.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
oceanwp ocean extra |