Vulnerabilities > Hasthemes > HT Feed

DATE CVE VULNERABILITY TITLE RISK
2024-06-08 CVE-2024-35699 Cross-site Scripting vulnerability in Hasthemes HT Feed
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in HasThemes HT Feed allows Stored XSS.This issue affects HT Feed: from n/a through 1.2.8.
network
low complexity
hasthemes CWE-79
5.4
5.4
2023-07-10 CVE-2023-23804 Cross-Site Request Forgery (CSRF) vulnerability in Hasthemes HT Feed
Cross-Site Request Forgery (CSRF) vulnerability in HasThemes HT Feed plugin <= 1.2.7 versions.
network
low complexity
hasthemes CWE-352
8.8
8.8