Lucene search
K

4 matches found

NVD
NVD
added 2024/05/08 10:15 a.m.30 views

CVE-2024-34571

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeGrill Himalayas allows Stored XSS.This issue affects Himalayas: from n/a through 1.3.0...

6.5CVSS6.7AI score0.00255EPSS
Exploits0References1
CVE
CVE
added 2024/05/08 9:39 a.m.62 views

CVE-2024-34571

CVE-2024-34571 corresponds to ThemeGrill Himalayas, a WordPress theme. Public records show an Authenticated Stored XSS in Himalayas up to version 1.3.0 due to improper input neutralization during web page generation. The risk is described as stored XSS with authenticated access (Contributor+). Re...

6.5CVSS5.2AI score0.00255EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/08 9:39 a.m.32 views

CVE-2024-34571 WordPress Himalayas theme <= 1.3.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeGrill Himalayas allows Stored XSS.This issue affects Himalayas: from n/a through 1.3.0...

6.5CVSS6.9AI score0.00255EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/05/07 12:0 a.m.17 views

WordPress Himalayas Theme <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Himalayas Type Theme Vulnerable versions = 1.3.0 Fixed in 1.3.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-34571 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID dd02f673cbfe Credits stealthcopter Required privilege Contributor...

6.5CVSS6.6AI score0.00255EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder