Loading HuntDB...

GHSA-3784-5wfh-hvvw

GitHub Security Advisory

⚠ Unreviewed MODERATE Has CVE

Advisory Details

The Slider by 10Web WordPress plugin before 1.2.59 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

Related CVEs

Key Information

GHSA ID
GHSA-3784-5wfh-hvvw
Published
September 30, 2024 6:33 AM
Last Modified
October 1, 2024 3:32 PM
CVSS Score
5.0 /10
Primary Ecosystem
Unknown
Primary Package
Unknown
GitHub Reviewed
✗ No

Dataset

Last updated: July 6, 2025 6:30 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.