CVE-2024-1357 | Averta Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress Shortcode aux_timeline cross site scripting

Posted by Angelo Barbosa | Apr 16, 2024 | CVE

A vulnerability classified as problematic was found in Averta Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress. Affected by this vulnerability is the function aux_timeline of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-1357. The attack can be launched remotely. There is no exploit available.

CVE-2024-1357 | Averta Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress Shortcode aux_timeline cross site scripting

Related Posts

CVE-2021-46931 | Linux Kernel up to 5.10.89/5.15.12 mlx5e mlx5e_tx_reporter_dump_sq Privilege Escalation (73665165b64a/07f13d58a8ec/918fc3855a65)

CVE-2024-41119 | opengeos streamlit-geospatial 8_????️_Raster_Data_Visualization.py eval vis_params input validation (GHSL-2024-100)

CVE-2024-30656 | Fireboltt Dream Wristphone BSW202_FB_AAC_v2.0_20240110-20240110-1956 Deauth Frame denial of service

CVE-2024-7154 | TOTOLINK A3700R 9.1.2u.5822_B20200513 Password Reset /wizard.html access control