2 matches found
CVE-2015-20019 Content text slider on post < 6.9 - Authenticated Stored Cross-Site Scripting (XSS)
The Content text slider on post WordPress plugin before 6.9 does not sanitise and escape the Title and Message/Content settings, which could lead to Cross-Site Scripting issues...
CVE-2015-20019
The CVE-2015-20019 entry concerns the WordPress Content text slider on post plugin, affected in versions before 6.9. The vulnerability arises from insufficient sanitization/escaping of the Title and Message/Content fields, enabling Cross-Site Scripting (XSS). Practical impact is cross-site script...