CVE-2024-6408
CVE-2024-6408 affects the Slider by 10Web WordPress plugin, prior to version 1.2.57. The flaw is an insufficient sanitization/escaping of the Slider Title, enabling Cross‑Site Scripting by high‑privilege users (e.g., Editors) even when unfiltered_html is disallowed. Red Hat confirms the issue tex...