A vulnerability was found in papin Companion Portfolio Plugin up to 2.4.0.1 on WordPress. It has been rated as problematic. This issue affects the function companion-portfolio of the component Shortcode Handler. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2024-11867. The attack may be initiated remotely. There is no exploit available.