Vendor Products CVEs KEV Avg EPSS Worst Severity 2 3 0 35.0% HIGH
CVE ID Description Severity CVSS KEV EPSS Published CVE-2024-37097 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in UnitedThemes Shortcodes by United Themes allows Reflected XSS.This issue affects Shortcodes by United Themes: from n/a before 5.0.5. MEDIUM 6.1 — 18.9% Jul 22, 2024 CVE-2024-24926 Deserialization of Untrusted Data vulnerability in UnitedThemes Brooklyn | Creative Multi-Purpose Responsive WordPress Theme.This issue affects Brooklyn | Creative Multi-Purpose Responsive WordPress Theme: from n/a through 4.9.7.6. HIGH 8.8 — 61.2% Feb 12, 2024 CVE-2024-24927 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in UnitedThemes Brooklyn | Creative Multi-Purpose Responsive WordPress Theme allows Reflected XSS.This issue affects Brooklyn | Creative Multi-Purpose Responsive WordPress Theme: from n/a through 4.9.7.6. MEDIUM 6.1 — 24.8% Feb 12, 2024