Summary

Acunetix 360 identified a version disclosure in the WordPress theme.

These themes are used to modify the layout and design of a WordPress installation and are mostly developed by external developers and not by the WordPress maintainers. Since they may contain PHP code, it is advised to keep the number of themes at the required minimum to avoid increasing the attack surface.

This information can help an attacker gain a greater understanding of the systems in use and potentially develop further attacks targeted at the specific version of WordPress Theme discovered.

Impact

Since this is an old version of the theme, it may be vulnerable to attacks.

Severity

Low

Classification

CAPEC-170 CWE-205 HIPAA-164.306(a) 164.308(a) ISO27001-A.18.1.3 WASC-13 OWASP 2013-A5 OWASP 2017-A6