Cross-site scripting (XSS) vulnerability in the Easing Slider plugin prior to 2.2.0.7 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the edit parameter in the (1) easingslider_manage_customizations or (2) easingslider_edit_sliders page to wp-admin/admin.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
easing slider project easing slider |