VYPR

Smart Framework

by WordPress

CVEs (1)

  • CVE-2024-13419MedMay 2, 2025
    risk 0.42cvss 6.4epss 0.00

    Multiple plugins and/or themes for WordPress using Smart Framework are vulnerable to Stored Cross-Site Scripting due to a missing capability check on the saveOptions() and importThemeOptions() functions in various versions. This makes it possible for authenticated attackers,…