CVE-2024-2347
CVE-2024-2347 concerns the Astra WordPress theme. It is a Stored Cross-Site Scripting (XSS) via a user’s display name in all versions up to and including 4.6.8, caused by insufficient input sanitization and output escaping. Exploitation requires authenticated access at contributor level or higher...