VYPR
High severity7.1NVD Advisory· Published May 8, 2024· Updated Apr 28, 2026

CVE-2024-34553

CVE-2024-34553

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Select-Themes Stockholm Core allows Reflected XSS.This issue affects Stockholm Core: from n/a through 2.4.1.

Affected products

2
  • cpe:2.3:a:select-themes:stockholm_core:*:*:*:*:*:wordpress:*:*+ 1 more
    • cpe:2.3:a:select-themes:stockholm_core:*:*:*:*:*:wordpress:*:*range: <2.4.2
    • (no CPE)range: <=2.4.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.