CVE-2023-30485

Name of the Vulnerable Software and Affected Versions Solwin Infotech Responsive WordPress Slider – Avartan Slider Lite plugin versions <= 1.5.3

Description The issue is an Unauth. Reflected Cross-Site Scripting (XSS) vulnerability. This means that an attacker can inject malicious scripts into the website, potentially allowing them to steal user data or take control of the user's session.

Recommendations For versions <= 1.5.3, update to a version higher than 1.5.3 to resolve the issue. As a temporary workaround, consider disabling the plugin until a patch is available. Restrict access to the plugin's settings to minimize the risk of exploitation. At the moment, there is no information about additional mitigation measures.