The Orbit Fox by ThemeIsle plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the register_reference() function in all versions up to, and including, 2.10.28. This makes it possible for unauthenticated malicious users to update the connected API keys.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
themeisle orbit fox |