Lucene search
K

5 matches found

Patchstack
Patchstack
added 2024/03/04 12:0 a.m.11 views

WordPress Master Slider Plugin <= 3.10.0 is vulnerable to Cross Site Scripting (XSS)

Software Master Slider Type Plugin Vulnerable versions = 3.10.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-0611 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 8edcbe7d9058 Credits Akbar Kustirama Required...

4.8CVSS5.7AI score0.00656EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2024/03/02 12:16 p.m.27 views

CVE-2024-0611

The Master Slider – Responsive Touch Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the slides callback functionality in all versions up to, and including, 3.9.9. This makes it possible for authenticated attackers, with editor-level access, to inject arbitrary web...

4.8CVSS4.3AI score0.00656EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/03/02 11:15 a.m.13 views

CVE-2024-0611 Master Slider – Responsive Touch Slider <= 3.9.9 - Authenticated(Editor+) Stored Cross-Site Scripting via slider callback

The Master Slider – Responsive Touch Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the slides callback functionality in all versions up to, and including, 3.9.9. This makes it possible for authenticated attackers, with editor-level access, to inject arbitrary web...

4.4CVSS6.7AI score0.00656EPSS
Exploits1References3
CVE
CVE
added 2024/03/02 11:15 a.m.84 views

CVE-2024-0611

CVE-2024-0611 affects Master Slider – Responsive Touch Slider for WordPress. Connected docs confirm a Stored Cross-Site Scripting flaw in the slides callback, impacting versions up to and including 3.9.5. Exploitation requires authenticated Editor+ access and affects multisite setups or sites wit...

4.8CVSS6.7AI score0.00656EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/03/02 11:15 a.m.34 views

CVE-2024-0611 Master Slider – Responsive Touch Slider <= 3.9.9 - Authenticated(Editor+) Stored Cross-Site Scripting via slider callback

The Master Slider – Responsive Touch Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the slides callback functionality in all versions up to, and including, 3.9.9. This makes it possible for authenticated attackers, with editor-level access, to inject arbitrary web...

4.4CVSS4.5AI score0.00656EPSS
Exploits1References3
Rows per page
Query Builder