CVE-2024-4575 | LayerSlider Plugin 7.11.0 on WordPress Shortcode ls_search_form cross site scripting

Inserito da Angelo Barbosa | Mag 23, 2024 | CVE

A vulnerability has been found in LayerSlider Plugin 7.11.0 on WordPress and classified as problematic. Affected by this vulnerability is the function ls_search_form of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-4575. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4575 | LayerSlider Plugin 7.11.0 on WordPress Shortcode ls_search_form cross site scripting

Post correlati

CVE-2024-30306 | Adobe Acrobat Reader up to 20.005.30539/23.008.20470 File out-of-bounds (apsb24-07)

CVE-2024-28228 | JetBrains YouTrack prior 2024.1.25893 HelpDesk authentication spoofing

CVE-2024-5792 | Houzez CRM Plugin up to 1.4.2 on WordPress sql injection

CVE-2024-6108 | Genexis Tilgin Home Gateway 322_AS0500-03_05_13_05 Login vood_view.cgi errmsg cross site scripting