Vulnerabilities > Templatesnext

DATE	CVE	VULNERABILITY TITLE	RISK
2024-06-08	CVE-2024-35753	Cross-site Scripting vulnerability in Templatesnext Onepager Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in TemplatesNext TemplatesNext OnePager allows Stored XSS.This issue affects TemplatesNext OnePager: from n/a through 1.3.3. network low complexity templatesnext CWE-79	5.4
2023-03-23	CVE-2023-22712	Unspecified vulnerability in Templatesnext Toolkit Auth. network low complexity templatesnext	5.4
2023-02-13	CVE-2022-4678	Unspecified vulnerability in Templatesnext Toolkit The TemplatesNext ToolKit WordPress plugin before 3.2.8 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. network low complexity templatesnext	5.4
2023-02-13	CVE-2023-0333	Unspecified vulnerability in Templatesnext Toolkit The TemplatesNext ToolKit WordPress plugin before 3.2.9 does not validate some of its shortcode attributes before using them to generate an HTML tag, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks network low complexity templatesnext	5.4

Vulnerabilities > Templatesnext {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Templatesnext"}]}