VYPR

Auxinportfolio

by Averta

Source repositories

CVEs (2)

  • CVE-2024-1384MedAug 29, 2024
    risk 0.35cvss 6.4epss 0.00

    The Premium Portfolio Features for Phlox theme plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'aux_recent_portfolios_grid' shortcode in all versions up to, and including, 2.3.4 due to insufficient input sanitization and output escaping on user…

  • CVE-2024-3587MedJul 16, 2024
    risk 0.35cvss 6.4epss 0.00

    The Premium Portfolio Features for Phlox theme plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Grid Portfolios Widget in all versions up to, and including, 2.3.2 due to insufficient input sanitization and output escaping on user supplied…