Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2025-03-15	CVE-2024-13847	Cross-site Scripting vulnerability in Essentialplugin Portfolio and Projects The Portfolio and Projects plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.5.3 due to insufficient input sanitization and output escaping. network low complexity essentialplugin CWE-79	4.8