CVE-2022-29424

Name of the Vulnerable Software and Affected Versions Biplob Adhikari's Image Hover Effects Ultimate plugin versions <= 9.7.1

Description The issue is an Authenticated Reflected Cross-Site Scripting (XSS) vulnerability. This means that an attacker can inject malicious scripts into the website, but only if they have admin or higher user role access. The estimated number of potentially affected devices worldwide is not available. There is no information about real-world incidents where this issue was exploited.

Recommendations For Biplob Adhikari's Image Hover Effects Ultimate plugin versions <= 9.7.1, update to a version higher than 9.7.1 to resolve the issue. As a temporary workaround, consider restricting access to the plugin's settings to minimize the risk of exploitation.