CVE-2025-39581
- EPSS 0.14%
- Veröffentlicht 16.04.2025 12:44:24
- Zuletzt bearbeitet 16.04.2025 13:25:37
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in themifyme Themify Shortcodes allows Stored XSS. This issue affects Themify Shortcodes: from n/a through 2.1.3.
CVE-2024-43133
- EPSS 0.21%
- Veröffentlicht 12.08.2024 23:15:17
- Zuletzt bearbeitet 07.03.2025 16:48:11
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Themify Themify Shortcodes allows Stored XSS.This issue affects Themify Shortcodes: from n/a through 2.1.1.
CVE-2024-4567
- EPSS 0.35%
- Veröffentlicht 14.05.2024 15:44:04
- Zuletzt bearbeitet 07.03.2025 12:36:39
The Themify Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's themify_button shortcode in all versions up to, and including, 2.0.9 due to insufficient input sanitization and output escaping on user supplied...
CVE-2024-2732
- EPSS 0.17%
- Veröffentlicht 26.03.2024 02:15:14
- Zuletzt bearbeitet 05.03.2025 20:50:02
The Themify Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'themify_post_slider shortcode in all versions up to, and including, 2.0.8 due to insufficient input sanitization and output escaping on user su...