5 matches found
WordPress Master Slider Plugin <= 3.10.0 is vulnerable to Cross Site Scripting (XSS)
Software Master Slider Type Plugin Vulnerable versions = 3.10.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-0611 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 8edcbe7d9058 Credits Akbar Kustirama Required...
CVE-2024-0611
The Master Slider – Responsive Touch Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the slides callback functionality in all versions up to, and including, 3.9.9. This makes it possible for authenticated attackers, with editor-level access, to inject arbitrary web...
CVE-2024-0611 Master Slider – Responsive Touch Slider <= 3.9.9 - Authenticated(Editor+) Stored Cross-Site Scripting via slider callback
The Master Slider – Responsive Touch Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the slides callback functionality in all versions up to, and including, 3.9.9. This makes it possible for authenticated attackers, with editor-level access, to inject arbitrary web...
CVE-2024-0611
CVE-2024-0611 affects Master Slider – Responsive Touch Slider for WordPress. Connected docs confirm a Stored Cross-Site Scripting flaw in the slides callback, impacting versions up to and including 3.9.5. Exploitation requires authenticated Editor+ access and affects multisite setups or sites wit...
CVE-2024-0611 Master Slider – Responsive Touch Slider <= 3.9.9 - Authenticated(Editor+) Stored Cross-Site Scripting via slider callback
The Master Slider – Responsive Touch Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the slides callback functionality in all versions up to, and including, 3.9.9. This makes it possible for authenticated attackers, with editor-level access, to inject arbitrary web...