Vulnerabilities (CVE)

Filtered by vendor 10web Subscribe
Filtered by product Sliderby10web
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-1320 1 10web 1 Sliderby10web 2024-11-21 3.5 LOW 4.8 MEDIUM
The Sliderby10Web WordPress plugin before 1.2.52 does not properly sanitize and escape some of its settings, which could allow high-privileged users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed