2 matches found
CVE-2023-6382
The Master Slider – Responsive Touch Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'msslide' shortcode in all versions up to, and including, 3.9.9 due to insufficient input sanitization and output escaping on user supplied 'cssclass' attribute. This mak...
CVE-2023-6382
CVE-2023-6382 refers to the Master Slider – Responsive Touch Slider WordPress plugin. Affected versions are up to 3.9.9 and the flaw is a Stored Cross-Site Scripting in the ms_slide shortcode due to insufficient input sanitization and output escaping of the css_class attribute. Exploitation requi...