The Superio WordPress theme does not sanitise and escape some parameters, which could allow users with a role as low as a subscriber to perform Cross-Site Scripting attacks.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Superio |
Apusthemes |
* |
1.2.33 (excluding) |
References