Filtered by vendor Logo Slider Wordpress
Subscriptions
Filtered by product Logo Slider Wordpress
Subscriptions
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2024-10896 | 1 Logo Slider Wordpress | 1 Logo Slider Wordpress | 2024-11-29 | 5.4 Medium |
The Logo Slider WordPress plugin before 4.5.0 does not sanitise and escape some of its Logo and Slider settings, which could allow high privilege users such as Contributor to perform Stored Cross-Site Scripting | ||||
CVE-2024-10473 | 1 Logo Slider Wordpress | 1 Logo Slider Wordpress | 2024-11-29 | 5.4 Medium |
The Logo Slider WordPress plugin before 4.5.0 does not sanitise and escape some of its Logo Settings when outputing them in pages where the Logo Slider shortcode is embed, which could allow users with a role as low as Author to perform Cross-Site Scripting attacks. |
Page 1 of 1.