Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Unknown | Carousel Slider | unaffected |
|
No data.
No data available yet.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Fri, 27 Sep 2024 19:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-79 | |
| CPEs | cpe:2.3:a:majeedraza:carousel_slider:*:*:*:*:*:wordpress:*:* |
Fri, 13 Sep 2024 16:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Majeedraza
Majeedraza carousel Slider |
|
| CPEs | cpe:2.3:a:majeedraza:carousel_slider:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Majeedraza
Majeedraza carousel Slider |
|
| Metrics |
cvssV3_1
|
Fri, 13 Sep 2024 06:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | The Carousel Slider WordPress plugin before 2.2.4 does not sanitise and escape some of its settings, which could allow high privilege users such as editors to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed | |
| Title | Carousel Slider < 2.2.14 - Editor+ Stored XSS | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: WPScan
Published:
Updated: 2024-09-13T15:24:16.091Z
Reserved: 2024-07-17T19:39:16.029Z
Link: CVE-2024-6850
Vulnrichment
Updated: 2024-09-13T15:19:28.985Z
NVD
Status : Analyzed
Published: 2024-09-13T06:15:15.437
Modified: 2024-09-27T18:30:30.930
Link: CVE-2024-6850
Redhat
No data.
OpenCVE Enrichment
No data.