Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2023-0589

Disclosure Date: March 27, 2023 (last updated October 08, 2023)
The WP Image Carousel WordPress plugin through 1.0.2 does not sanitise and escape some parameters, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0