Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 6:24 p.m.11 views

CVE-2021-24729

The Logo Showcase with Slick Slider WordPress plugin before 1.2.4 does not sanitise the Grid Settings, which could allow users with a role as low as Author to perform stored Cross-Site Scripting attacks via post metadata of Grid logo showcase...

5.4CVSS6AI score0.00604EPSS
Exploits2References1
OSV
OSV
added 2021/11/23 8:15 p.m.4 views

CVE-2021-24729

The Logo Showcase with Slick Slider WordPress plugin before 1.2.4 does not sanitise the Grid Settings, which could allow users with a role as low as Author to perform stored Cross-Site Scripting attacks via post metadata of Grid logo showcase...

5.4CVSS5.8AI score0.00604EPSS
Exploits2References1
Cvelist
Cvelist
added 2021/11/23 7:16 p.m.23 views

CVE-2021-24729 Logo Showcase with Slick Slider < 1.2.4 - Author+ Stored Cross Site Scripting

The Logo Showcase with Slick Slider WordPress plugin before 1.2.4 does not sanitise the Grid Settings, which could allow users with a role as low as Author to perform stored Cross-Site Scripting attacks via post metadata of Grid logo showcase...

5.5AI score0.00604EPSS
Exploits2References1
CVE
CVE
added 2021/11/23 7:16 p.m.57 views

CVE-2021-24729

CVE-2021-24729 concerns the WordPress plugin “Logo Showcase with Slick Slider” (versions before 1.2.4). The vulnerability is a failure to sanitize Grid Settings, enabling stored Cross-Site Scripting via post metadata and allowing unaffiliated authors or users with low privileges to inject script....

5.4CVSS5.3AI score0.00604EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder