CVE-2024-24931

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in swadeshswain Before After Image Slider WP allows Stored XSS.This issue affects Before After Image Slider WP: from n/a through 2.2.
Configurations

Configuration 1 (hide)

cpe:2.3:a:swadeshswain:before_after_image_slider:*:*:*:*:*:wordpress:*:*

History

16 Feb 2024, 21:33

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.4
References () https://patchstack.com/database/vulnerability/before-after-image-slider/wordpress-before-after-image-slider-wp-plugin-2-2-cross-site-scripting-xss-vulnerability?_s_id=cve - () https://patchstack.com/database/vulnerability/before-after-image-slider/wordpress-before-after-image-slider-wp-plugin-2-2-cross-site-scripting-xss-vulnerability?_s_id=cve - Third Party Advisory
CPE cpe:2.3:a:swadeshswain:before_after_image_slider:*:*:*:*:*:wordpress:*:*
First Time Swadeshswain
Swadeshswain before After Image Slider

12 Feb 2024, 06:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-02-12 06:15

Updated : 2024-02-28 20:54


NVD link : CVE-2024-24931

Mitre link : CVE-2024-24931

CVE.ORG link : CVE-2024-24931


JSON object : View

Products Affected

swadeshswain

  • before_after_image_slider
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')