CVE-2024-1357 | Averta Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress Shortcode aux_timeline cross site scripting

Posted by Angelo Barbosa | Apr 16, 2024 | CVE

A vulnerability classified as problematic was found in Averta Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress. Affected by this vulnerability is the function aux_timeline of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-1357. The attack can be launched remotely. There is no exploit available.

CVE-2024-1357 | Averta Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress Shortcode aux_timeline cross site scripting

Related Posts

CVE-2024-38896 | Wavlink WN551K1 /cgi-bin/nightled.cgi start_hour command injection

CVE-2024-6795 | Baxter Connex Health Portal sql injection (icsma-24-249-01)

CVE-2024-34477 | FOG up to 1.5.10 NFS Share Mount lib/common/functions.sh configureNFS Local Privilege Escalation

CVE-2024-0315 | FireEye Central Management 9.1.1.956704 filename control