CVE-2024-35762

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Cryout Creations Serious Slider allows Stored XSS.This issue affects Serious Slider: from n/a through 1.2.4...

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the theme color-code values. An attacker can execute arbitrary scripts in the context of the user's browser by crafting malicious input that is rendered when a user customizes theme colors. Details Cross-sit...