Filtered by vendor Logo Slider Wordpress Subscriptions
Filtered by product Logo Slider Wordpress Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-10896 1 Logo Slider Wordpress 1 Logo Slider Wordpress 2024-11-29 5.4 Medium
The Logo Slider WordPress plugin before 4.5.0 does not sanitise and escape some of its Logo and Slider settings, which could allow high privilege users such as Contributor to perform Stored Cross-Site Scripting
CVE-2024-10473 1 Logo Slider Wordpress 1 Logo Slider Wordpress 2024-11-29 5.4 Medium
The Logo Slider WordPress plugin before 4.5.0 does not sanitise and escape some of its Logo Settings when outputing them in pages where the Logo Slider shortcode is embed, which could allow users with a role as low as Author to perform Cross-Site Scripting attacks.