Lucene search
HistoryJun 20, 2024 - 3:15 p.m.
CVE-2024-37222
cross site scripting
averta master slider
reflected xss
cve-2024-37222
7.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
0.0004 Low
EPSS
Percentile
9.1%
Cross Site Scripting (XSS) vulnerability in Averta Master Slider allows Reflected XSS.This issue affects Master Slider: from n/a through 3.9.10.
Affected configurations
Node
avertamaster_sliderRange≤3.9.10
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "master-slider",
"product": "Master Slider",
"vendor": "Averta",
"versions": [
{
"lessThanOrEqual": "3.9.10",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-37222
2024-06-20 15:15:50
cvelist
cvelist
vulnrichment
vulnrichment
wpvulndb
wpvulndb
7.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2024-37222