CVE-2021-24729

Published: Nov 23, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

The Logo Showcase with Slick Slider WordPress plugin before 1.2.4 does not sanitise the Grid Settings, which could allow users with a role as low as Author to perform stored Cross-Site Scripting attacks via post metadata of Grid logo showcase.

Vendor	Product	Versions
Unknown	Logo Showcase with Slick Slider – Logo Carousel, Logo Slider & Logo Grid	affected `1.2.4 - < 1.2.4`

Weaknesses (CWE)

CWE-79

References

https://wpscan.com/vulnerability/5d70818e-730d-40c9-a2db-652052a5fd5c

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-24729

Description

Affected Products

Weaknesses (CWE)

References