Vulnerabilities (CVE)

Filtered by vendor Purethemes Subscribe
Filtered by product Workscout Core
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-24246 1 Purethemes 2 Workscout, Workscout Core 2024-11-21 3.5 LOW 5.4 MEDIUM
The Workscout Core WordPress plugin before 1.3.4, used by the WorkScout Theme did not sanitise the chat messages sent via the workscout_send_message_chat AJAX action, leading to Stored Cross-Site Scripting and Cross-Frame Scripting issues