Untriaged
Permalink
CVE-2024-37248
6.5 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): LOW
- Privileges required (PR): LOW
- User interaction (UI): REQUIRED
- Scope (S): CHANGED
- Confidentiality impact (C): LOW
- Integrity impact (I): LOW
- Availability impact (A): LOW
WordPress Anima theme <= 1.4.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Anima allows Stored XSS.This issue affects Anima: from n/a through 1.4.1.
References
- https://patchstack.com/database/vulnerability/anima/wordpress-anima-theme-1-4-1… vdb-entry
- https://patchstack.com/database/vulnerability/anima/wordpress-anima-theme-1-4-1… vdb-entry
- https://patchstack.com/database/vulnerability/anima/wordpress-anima-theme-1-4-1… vdb-entry
- https://patchstack.com/database/vulnerability/anima/wordpress-anima-theme-1-4-1… x_transferred vdb-entry
Affected products
anima
- =<1.4.1
Matching in nixpkgs
pkgs.animatch
Cute match three game for the Librem 5 smartphone
-
nixos-unstable -
- nixpkgs-unstable 1.0.3
pkgs.gpx-animator
GPX track to video animator
-
nixos-unstable -
- nixpkgs-unstable 1.8.2
pkgs.gnomeExtensions.disable-workspace-animation
GNOME Shell 45+ extension that disables the workspace animation when switching between workspaces
-
nixos-unstable -
- nixpkgs-unstable 7
pkgs.gnomeExtensions.disable-workspace-switch-animation-for-gnome-40
Disables the workspace switch animation while preserving all other animations - instantly switch between workspaces with keyboard shortcuts.
-
nixos-unstable -
- nixpkgs-unstable 40-9
Package maintainers
-
@uninsane Colin Sane <colin@uninsane.org>
-
@honnip Jung seungwoo <me@honnip.page>
-
@markasoftware Mark Polyakov <mark@markasoftware.com>