3 matches found
CVE-2024-37480
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Apollo13Themes Apollo13 Framework Extensions apollo13-framework-extensions allows Stored XSS.This issue affects Apollo13 Framework Extensions: from n/a through 1.9.3...
CVE-2024-37480
CVE-2024-37480 (Apollo13 Framework Extensions) is a Stored XSS vulnerability in the Apollo13 Framework Extensions WordPress plugin. The issue arises from improper neutralization of input during web page generation, enabling stored script execution. Affected: Apollo13 Framework Extensions versions...
WordPress Apollo13 Framework Extensions Plugin <= 1.9.3 is vulnerable to Cross Site Scripting (XSS)
Software Apollo13 Framework Extensions Type Plugin Vulnerable versions = 1.9.3 Fixed in 1.9.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37480 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID dbb97a0dbb53 Credits Michael Required privile...