CVE-2024-47356
Improper Neutralization of Input During Web Page Generation (XSS or ‘Cross-site Scripting’) vulnerability in Catch Themes Create allows Stored XSS.This issue affects Create: from n/a through 2.9.1.
More information : https://patchstack.com/database/vulnerability/create/wordpress-create-theme-2-9-1-cross-site-scripting-xss-vulnerability?_s_id=cve