CVE-2024-56209

🗓️ 31 Dec 2024 10:33:43Reported by PatchstackType

Reflected Cross Site Scripting vulnerability in WordPress Kleo theme before version 5.4.4

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2024-56209	31 Dec 202412:52	–	circl
CNNVD	WordPress plugin Kleo 跨站脚本漏洞	31 Dec 202400:00	–	cnnvd
Cvelist	CVE-2024-56209 WordPress Kleo theme < 5.4.4 - Reflected Cross Site Scripting (XSS) vulnerability	31 Dec 202410:33	–	cvelist
EUVD	EUVD-2024-53007	3 Oct 202520:07	–	euvd
NVD	CVE-2024-56209	31 Dec 202411:15	–	nvd
Patchstack	WordPress Kleo theme < 5.4.4 - Reflected Cross Site Scripting (XSS) vulnerability	19 Dec 202411:43	–	patchstack
Prion	CVE-2024-56209	31 Dec 202411:15	–	prion
Positive Technologies	PT-2024-36743 · Seventhqueen · Seventhqueen Kleo	31 Dec 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-56209	5 Feb 202509:16	–	redhatcve
Vulnrichment	CVE-2024-56209 WordPress Kleo theme < 5.4.4 - Reflected Cross Site Scripting (XSS) vulnerability	31 Dec 202410:33	–	vulnrichment

Vulners

Node

seventhqueen kleoRange≤5.4.4wordpress

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "kleo",
    "product": "Kleo",
    "vendor": "SeventhQueen",
    "versions": [
      {
        "changes": [
          {
            "at": "5.4.4",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "5.4.4",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/Wordpress/Theme/kleo/vulnerability/wordpress-kleo-theme-5-4-4-reflected-cross-site-scripting-xss-vulnerability

28 Apr 2026 16:10Current

7.2High risk

Vulners AI Score7.2

CVSS 3.17.1

EPSS0.00164

SSVC

CWE-79