Lucene search
Dmitrii IgnatyevWPEX-ID:23805A61-9FCD-4744-A60D-05C8CB43EE01HistoryMar 25, 2024 - 12:00 a.m.
Carousel Slider < 2.2.7 - Editor+ Stored XSS
2024-03-2500:00:00
Dmitrii Ignatyev
40
slider
stored xss
editor
add new
photos
payload
slides per view
shortcode
post
page
exploit
Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
1. Add a new slider at "Carousel Sliders > Add New"
2. Add photos to the slider
3. Add the payload `(1212"asd='' onmouseover='alert(1)')` to the "Slides Per View" field
4. Add the slider shortcode to a post/page and then view to see the XSSReferences
Related
nvd
nvd
CVE-2024-1712
2024-04-15 05:15:14
wpvulndb
wpvulndb
Carousel Slider < 2.2.7 - Editor+ Stored Cross-Site Scripting
2024-04-10 00:00:00
Carousel Slider < 2.2.7 - Editor+ Stored XSS
2024-03-25 00:00:00
cvelist
cvelist
CVE-2024-1712 Carousel Slider < 2.2.7 - Editor+ Stored XSS
2024-04-15 05:00:04
cve
cve
CVE-2024-1712
2024-04-15 05:15:14
vulnrichment
vulnrichment
CVE-2024-1712 Carousel Slider < 2.2.7 - Editor+ Stored XSS
2024-04-15 05:00:04
wordfence
wordfence
AI Score
5.7
Confidence
High
EPSS
0
Percentile
9.0%
Related for WPEX-ID:23805A61-9FCD-4744-A60D-05C8CB43EE01