EUVD-2021-11552

Malware in sbrugna...

WordPress WordPress Slider Block Gutenslider Plugin < 5.10.2 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Slider Block Gutenslider Type Plugin Vulnerable versions 5.10.2 Fixed in 5.10.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID fe200db4a069 Credits Rafie Muhamma...

WordPress Slider Block Gutenslider plugin <= 5.6.1 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Slider Block Gutenslider plugin versions = 5.6.1. Solution Update the WordPress Slider Block Gutenslider plugin to the latest available version at least 5.7.0...

WordPress Slider Block Gutenslider plugin <= 5.6.1 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Slider Block Gutenslider plugin versions = 5.6.1. Solution Update the WordPress Slider Block Gutenslider plugin to the latest available version at least 5.7.0...

CVE-2021-24640

The WordPress Slider Block Gutenslider plugin before 5.2.0 does not escape the minWidth attribute of a Gutenburg block, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks...

CVE-2021-24640

The WordPress Slider Block Gutenslider plugin before 5.2.0 does not escape the minWidth attribute of a Gutenburg block, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks...

Cross site scripting

The WordPress Slider Block Gutenslider plugin before 5.2.0 does not escape the minWidth attribute of a Gutenburg block, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks...

CVE-2021-24640 Gutenslider < 5.2.0 - Contributor+ Stored XSS

The WordPress Slider Block Gutenslider plugin before 5.2.0 does not escape the minWidth attribute of a Gutenburg block, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks...

CVE-2021-24640

The WordPress plugin Gutenslider (Slider Block) before 5.2.0 is vulnerable to a stored XSS due to not escaping the minWidth attribute in a Gutenberg block. This can be exploited by users with as little as Contributor privileges (no user interaction required in some PoCs) to inject arbitrary scrip...

WordPress 插件跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress Plugin is an open source application plugin for WordPress. A cross-site scripting vulnerability exists i...

Gutenslider < 5.2.0 - Contributor+ Stored XSS

The plugin does not escape the minWidth attribute of a Gutenburg block, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks As a contributor or above, create/edit a post, put the below code while in Code Editor mode, and view/preview the post The...

Gutenslider < 5.2.0 - Contributor+ Stored XSS

The plugin does not escape the minWidth attribute of a Gutenburg block, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks PoC As a contributor or above, create/edit a post, put the below code while in Code Editor mode, and view/preview the post The...