CVE-2024-1357 | Averta Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress Shortcode aux_timeline cross site scripting

Posted by Angelo Barbosa | Apr 16, 2024 | CVE

A vulnerability classified as problematic was found in Averta Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress. Affected by this vulnerability is the function aux_timeline of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-1357. The attack can be launched remotely. There is no exploit available.

CVE-2024-1357 | Averta Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress Shortcode aux_timeline cross site scripting

Related Posts

CVE-2024-9186 | FunnelKit Recover WooCommerce Cart Abandonment up to 3.2.x on WordPress bwfan-track-id sql injection

CVE-2023-41993 | Oracle Java SE/GraalVM Enterprise Edition JavaFX WebKitGTK unusual condition

CVE-2024-46801 | Linux Kernel up to 6.10.9 libfs get_stashed_dentry null pointer dereference (03e2a1209a83/4e32c25b58b9)

CVE-2024-51529 | Huawei HarmonyOS up to 4.2.0 Battery Module denial of service