Lucene search

CVE-2024-3587

🗓️ 16 Jul 2024 09:02:15Reported by [email protected]Type

The Phlox theme plugin for WordPress is vulnerable to Stored Cross-Site Scriptin

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
CVE	CVE-2024-3587	16 Jul 202409:15	–	cve
Vulnrichment	CVE-2024-3587 Premium Portfolio Features for Phlox theme <= 2.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via ' Grid Portfolios'	16 Jul 202408:32	–	vulnrichment
Cvelist	CVE-2024-3587 Premium Portfolio Features for Phlox theme <= 2.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via ' Grid Portfolios'	16 Jul 202408:32	–	cvelist
RedhatCVE	CVE-2024-3587	23 May 202509:26	–	redhatcve
Patchstack	WordPress Phlox Portfolio Plugin <= 2.3.2 is vulnerable to Cross Site Scripting (XSS)	16 Jul 202400:00	–	patchstack
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (July 15, 2024 to July 21, 2024)	25 Jul 202414:49	–	wordfence

Nvd

Node

averta auxinportfolioRange<2.3.3wordpress

Source	Link
plugins	www.plugins.trac.wordpress.org/changeset/3115537/auxin-portfolio/trunk/public/templates/elements/recent-portfolio.php
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/b0ea041b-f09d-4c62-aada-26afbc60b6f2
plugins	www.plugins.trac.wordpress.org/browser/auxin-portfolio/tags/2.3.2/public/templates/elements/recent-portfolio.php

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

16 Jul 2024 09:15Current

CVSS35.4 - 6.4

EPSS0.00079

CWE-79