Lucene search
K

4 matches found

NVD
NVD
added 2025/03/05 10:15 a.m.5 views

CVE-2024-11731

The Master Slider – Responsive Touch Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's msslider shortcode in all versions up to, and including, 3.10.7 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS0.00256EPSS
Exploits0References4
Circl
Circl
added 2025/03/05 9:35 a.m.8 views

CVE-2024-11731

creationtimestamp| type| source ---|---|--- 2025-03-05 09:35:49+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6515 2025-03-05 12:46:09+00:00| seen| https://t.me/cvedetector/19625 2025-03-06 02:16:26+00:00| seen| Telegram/qx2bUWKWsmNxn5oZMzj6jpqOnfY4uiactQoXQyntvtcFg8Q2...

6.4CVSS8.7AI score0.00256EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/03/05 9:21 a.m.9 views

CVE-2024-11731 Master Slider – Responsive Touch Slider <= 3.10.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via ms_slider Shortcode

The Master Slider – Responsive Touch Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's msslider shortcode in all versions up to, and including, 3.10.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS5.9AI score0.00256EPSS
Exploits0References3
CVE
CVE
added 2025/03/05 9:21 a.m.58 views

CVE-2024-11731

The CVE-2024-11731 entry covers a Stored Cross-Site Scripting in WordPress Master Slider (ms_slider shortcode). Connected sources confirm the flaw affects Master Slider versions up to at least 3.10.7 (Wordfence/Patchstack entries) and is exploitable by an authenticated attacker with contributor-l...

6.4CVSS7.4AI score0.00256EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder