Unrated severityNVD Advisory· Published Jun 21, 2024· Updated Apr 28, 2026No known patch
WordPress Interface theme <= 3.1.0 - Cross Site Scripting (XSS) vulnerability
No known patch is available for this vulnerability.
The affected theme has not been updated on WordPress.org since before this CVE was disclosed; the latest installable version is still vulnerable. If you have the affected software installed, you should uninstall or replace it rather than wait for an update.
CVE-2024-35758
Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Theme Horse Interface allows Stored XSS.This issue affects Interface: from n/a through 3.1.0.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=3.1.0
- Theme Horse/Interfacev5Range: n/a
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.