PT-2019-7378 · Unknown · Captain-Slider
Published
2019-09-26
·
Updated
2019-09-26
·
CVE-2015-9419
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
captain-slider plugin version 1.0.6
Description
The issue is related to a cross-site scripting (XSS) problem. It occurs via a Title or Caption section, allowing potential exploitation.
Recommendations
For captain-slider plugin version 1.0.6, consider disabling the Title or Caption section until a patch is available to prevent XSS exploitation.
Exploit
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Captain-Slider