Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2024-0611

Published: 02/03/2024 Updated: 04/03/2024

Vulnerability Summary

The Master Slider – Responsive Touch Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the slides callback functionality in all versions up to, and including, 3.9.5. This makes it possible for authenticated attackers, with editor-level access, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.

Vendor Advisories

Google Chrome: Long Term Support Channel Update for ChromeOS
LTC-120 is being updated in the LTC (Long Term Support Candidate) channel, version 12006099294 (Platform Version: 15662940), for most ChromeOS devices Release notes for LTC-120 can be found here Want to know more about Long-term Support? Click hereThis update contains selective Security fixes, including:Chrome Browser Security ...

References

https://www.wordfence.com/threat-intel/vulnerabilities/id/ac6e587c-59b2-4f93-ab88-5e548b52db45?source=cvehttps://advisory.abay.sh/cve-2024-0611https://nvd.nist.govhttps://chromereleases.googleblog.com/2024/02/long-term-support-channel-update-for_21.html
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionSSRFbuffer overflowCVE-2023-28952CVE-2023-41822CVE-2024-27956CVE-2023-7028CVE-2024-34447CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook