VYPR

Formula

by Awplife

CVEs (2)

  • CVE-2024-5638MedJun 8, 2024
    risk 0.40cvss 6.1epss 0.00

    The Formula theme for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘id’ parameter in the 'ti_customizer_notify_dismiss_recommended_plugins' AJAX action in all versions up to, and including, 0.5.1 due to insufficient input sanitization and output…

  • CVE-2024-5613MedJun 8, 2024
    risk 0.40cvss 6.1epss 0.00

    The Formula theme for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘id’ parameter in the 'quality_customizer_notify_dismiss_action' AJAX action in all versions up to, and including, 0.5.1 due to insufficient input sanitization and output escaping. This…