WordPress WP Contact Slider plugin” (versions <= 2.4.6) AuthenticatedStored Cross-Site Scripting (XSS) vulnerability
2022年6月14日(火) 10:08
重大性スコア(CVS)
Details
Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered in the WordPress WP Contact Slider plugin (version <= 2.4.6).
solution
Update the WordPress WP Contact Slider plugin to the latest version available (at least 2.4.7).
Sources.
WP Contact Slider
Simple contact slider to display Contact Form 7, Gravity Forms, some other shortcodes or some plain text/HTML.
wordpress.org
