4 matches found
CVE-2024-4372
CVE-2024-4372 affects the Carousel Slider WordPress plugin (versions before 2.2.11). The issue is a stored XSS risk due to inadequate sanitization/escaping of certain parameters, exploitable by users with as little as Editor privileges. The Red Hat and Patchstack records corroborate the same vuln...
CVE-2024-4372 Carousel Slider < 2.2.11 - Editor+ Stored XSS
The Carousel Slider WordPress plugin before 2.2.11 does not sanitise and escape some parameters, which could allow users with a role as low as editor to perform Cross-Site Scripting attacks...
CVE-2024-4372 Carousel Slider < 2.2.11 - Editor+ Stored XSS
The Carousel Slider WordPress plugin before 2.2.11 does not sanitise and escape some parameters, which could allow users with a role as low as editor to perform Cross-Site Scripting attacks...
WordPress Carousel Slider Plugin < 2.2.11 is vulnerable to Cross Site Scripting (XSS)
Software Carousel Slider Type Plugin Vulnerable versions 2.2.11 Fixed in 2.2.11 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4372 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID cea7cd9dc30e Credits Dmitrii Ignatyev Require...