Lucene search
K

5 matches found

Patchstack
Patchstack
added 2024/04/15 12:0 a.m.23 views

WordPress Responsive Slider by MetaSlider Plugin <= 3.70.0 is vulnerable to Cross Site Scripting (XSS)

Software Responsive Slider by MetaSlider Type Plugin Vulnerable versions = 3.70.0 Fixed in 3.70.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3285 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 334dac19f012 Credits wesley...

6.4CVSS6AI score0.00343EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2024/04/11 8:15 a.m.22 views

CVE-2024-3285

The Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'metaslider' shortcode in all versions up to, and including, 3.70.0 due to insufficient input sanitization and output escaping on us...

6.4CVSS5.7AI score0.00343EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/04/11 7:31 a.m.27 views

CVE-2024-3285 Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows <= 3.70.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via metaslider Shortcode

The Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'metaslider' shortcode in all versions up to, and including, 3.70.0 due to insufficient input sanitization and output escaping on us...

6.4CVSS5.8AI score0.00343EPSS
Exploits0References2
CVE
CVE
added 2024/04/11 7:31 a.m.60 views

CVE-2024-3285

CVE-2024-3285 concerns the Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows plugin. The vulnerability is a Stored Cross-Site Scripting issue in the metaslider shortcode, triggered by insufficient input sanitization and output escaping on user-supplied attributes. It a...

6.4CVSS5.7AI score0.00343EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/04/11 7:31 a.m.14 views

CVE-2024-3285 Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows <= 3.70.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via metaslider Shortcode

The Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'metaslider' shortcode in all versions up to, and including, 3.70.0 due to insufficient input sanitization and output escaping on us...

6.4CVSS6.1AI score0.00343EPSS
Exploits0References2
Rows per page
Query Builder