4 matches found
CVE-2024-11731
The Master Slider – Responsive Touch Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's msslider shortcode in all versions up to, and including, 3.10.7 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...
CVE-2024-11731
creationtimestamp| type| source ---|---|--- 2025-03-05 09:35:49+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6515 2025-03-05 12:46:09+00:00| seen| https://t.me/cvedetector/19625 2025-03-06 02:16:26+00:00| seen| Telegram/qx2bUWKWsmNxn5oZMzj6jpqOnfY4uiactQoXQyntvtcFg8Q2...
CVE-2024-11731 Master Slider – Responsive Touch Slider <= 3.10.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via ms_slider Shortcode
The Master Slider – Responsive Touch Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's msslider shortcode in all versions up to, and including, 3.10.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...
CVE-2024-11731
The CVE-2024-11731 entry covers a Stored Cross-Site Scripting in WordPress Master Slider (ms_slider shortcode). Connected sources confirm the flaw affects Master Slider versions up to at least 3.10.7 (Wordfence/Patchstack entries) and is exploitable by an authenticated attacker with contributor-l...