| CVE-2024-24880 | Med | 0.42 | 6.5 | 0.00 | | Feb 8, 2024 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apollo13Themes Apollo13 Framework Extensions allows Stored XSS.This issue affects Apollo13 Framework Extensions: from n/a through 1.9.2. |
| CVE-2023-47190 | Med | 0.42 | 6.5 | 0.00 | | Nov 8, 2023 | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Apollo13Themes Apollo13 Framework Extensions plugin <= 1.9.0 versions. |
| CVE-2023-51539 | Med | 0.35 | 5.4 | 0.00 | | Jan 5, 2024 | Cross-Site Request Forgery (CSRF) vulnerability in Apollo13Themes Apollo13 Framework Extensions.This issue affects Apollo13 Framework Extensions: from n/a through 1.9.1. |
