CVE-2024-1357 | Averta Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress Shortcode aux_timeline cross site scripting

Posted by Angelo Barbosa | Apr 16, 2024 | CVE

A vulnerability classified as problematic was found in Averta Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress. Affected by this vulnerability is the function aux_timeline of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-1357. The attack can be launched remotely. There is no exploit available.

CVE-2024-1357 | Averta Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress Shortcode aux_timeline cross site scripting

Related Posts

CVE-2024-10452 | Grafana 10.4.0 Pending Invite authorization

CVE-2023-51561 | Foxit PDF Reader PDF File Parser out-of-bounds (ZDI-23-1862)

CVE-2024-43047 | Qualcomm Snapdragon Auto up to XR2 5G Platform HLOS use after free

CVE-2024-0799 | Arcserve Unified Data Protection up to 8.1/9.2 wizardLogin doLogin improper authentication