Unauthenticated stored XSS vulnerability in WordPress OneTone theme (unpatched).

The WordPress OneTone theme, which has 20,000+ active installations, is prone to an unpatched and unauthenticated settings import vulnerability that could lead to multiple stored XSS.