CVE-2024-6850 in Carousel Slider Plugininformation

Résumé

par MITRE • 13/09/2024

The Carousel Slider WordPress plugin before 2.2.4 does not sanitise and escape some of its settings, which could allow high privilege users such as editors to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Responsable

WPScan

Réserver

17/07/2024

Divulgation

13/09/2024

Modérer

accepté

Entrée

VDB-277383

CPE

prêt

EPSS

0.00325

KEV

non

Activités

très faible

Sources

Want to know what is going to be exploited?

We predict KEV entries!