Apollo13themes Apollo13 Framework Extensions
6 CVEs affecting Apollo13themes Apollo13 Framework Extensions. Latest disclosed: 2026-02-19. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-37480 | Medium | 6.5 | 2024-07-21 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Apollo13Themes Apollo13 Framework Extensions apoll… |
CVE-2024-24880 | Medium | 6.5 | 2024-02-08 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apollo13Themes Apollo13 Framework Extensions allows Store… |
CVE-2023-47190 | Medium | 6.5 | 2023-11-08 | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Apollo13Themes Apollo13 Framework Extensions plugin <= 1.9.0 versions. |
CVE-2025-13617 | Medium | 6.4 | 2026-02-19 | The Apollo13 Framework Extensions plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘a13_alt_link’ parameter in all versions up to, and… |
CVE-2023-25959 | Medium | 5.4 | 2024-12-09 | Missing Authorization vulnerability in Apollo13Themes Apollo13 Framework Extensions allows Exploiting Incorrectly Configured Access Control Security Levels.Thi… |
CVE-2023-51539 | Medium | 5.4 | 2024-01-05 | Cross-Site Request Forgery (CSRF) vulnerability in Apollo13Themes Apollo13 Framework Extensions.This issue affects Apollo13 Framework Extensions: from n/a thro… |