Lucene search
K

4 matches found

CVE
CVE
added 2024/05/21 6:0 a.m.75 views

CVE-2024-4372

CVE-2024-4372 affects the Carousel Slider WordPress plugin (versions before 2.2.11). The issue is a stored XSS risk due to inadequate sanitization/escaping of certain parameters, exploitable by users with as little as Editor privileges. The Red Hat and Patchstack records corroborate the same vuln...

5.4CVSS6AI score0.00399EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2024/05/21 6:0 a.m.25 views

CVE-2024-4372 Carousel Slider < 2.2.11 - Editor+ Stored XSS

The Carousel Slider WordPress plugin before 2.2.11 does not sanitise and escape some parameters, which could allow users with a role as low as editor to perform Cross-Site Scripting attacks...

8.7AI score0.00399EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2024/05/21 6:0 a.m.11 views

CVE-2024-4372 Carousel Slider < 2.2.11 - Editor+ Stored XSS

The Carousel Slider WordPress plugin before 2.2.11 does not sanitise and escape some parameters, which could allow users with a role as low as editor to perform Cross-Site Scripting attacks...

6AI score0.00399EPSS
Exploits2References1
Patchstack
Patchstack
added 2024/05/21 12:0 a.m.16 views

WordPress Carousel Slider Plugin < 2.2.11 is vulnerable to Cross Site Scripting (XSS)

Software Carousel Slider Type Plugin Vulnerable versions 2.2.11 Fixed in 2.2.11 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4372 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID cea7cd9dc30e Credits Dmitrii Ignatyev Require...

5.7AI score0.00399EPSS
Exploits2References4Affected Software1
Rows per page
Query Builder