CVE-2023-1915 Information

May 16, 2023 cve

Description

The Thumbnail carousel slider WordPress plugin before 1.1.10 does not sanitise and escape some parameters before outputting them back in pages leading to Reflected Cross-Site Scripting vulnerability which could be used against high privilege users such as admin.

Reference

https://wpscan.com/vulnerability/0487c3f6-1a3c-4089-a614-15138f52f69b

Share on: