Beta

Report

Nexos <= 1.7 is vulnerable to Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability

Unauthenticated
Published
2020-06-27

The Nexos theme through 1.7 for WordPress allows side-map/?search_order= SQL Injection.

CVE

https://www.cve.org/CVERecord?id=CVE-2020-15363

CVSS

Score:6.1

Severity:Medium

Version: 1.7

There is a patch available in v1.8 and we strongly recommend you update to this version as soon as possible.