Lucene search
China National Vulnerability DatabaseCNVD-2023-09629HistoryFeb 08, 2023 - 12:00 a.m.
WordPress plugin Logo Slider cross-site scripting vulnerability
2023-02-0800:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
wordpress
logo slider
cross-site scripting
vulnerability
php
validation
escaping
shortcode
wordpress foundation
0.001 Low
EPSS
Percentile
23.3%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. cross-site scripting vulnerability exists in versions prior to WordPress plugin Logo Slider 3.6.0, which stems from the fact that some of its shortcode properties are not validated and escaped before being output back to the page. No details of the vulnerability are currently available.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress logo slider plugin | lt | 3.6.0 |
Related
wpvulndb
wpvulndb
Logo Slider < 3.6.0 - Contributor+ Stored XSS in Shortcode
2022-12-16 00:00:00
nvd
nvd
CVE-2022-4664
2023-02-06 20:15:11
wpexploit
wpexploit
Logo Slider < 3.6.0 - Contributor+ Stored XSS in Shortcode
2022-12-16 00:00:00
prion
prion
Cross site scripting
2023-02-06 20:15:00
cvelist
cvelist
CVE-2022-4664 Logo Slider < 3.6.0 - Contributor+ Stored XSS in Shortcode
2023-02-06 19:59:12
cve
cve
CVE-2022-4664
2023-02-06 20:15:11