CVE-2022-29426

Description

Authenticated (contributor or higher user role) Reflected Cross-Site Scripting (XSS) vulnerability in 2J Slideshow Team's Slideshow, Image Slider by 2J plugin <= 1.3.54 at WordPress.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Changed

Confidentiality

Low

Integrity

Low

Availability

None

Affected products

2J Slideshow Team / Slideshow, Image Slider by 2J (WordPress plugin)<= 1.3.54 – 1.3.54

References

MISChttps://wordpress.org/plugins/2j-slideshow/#developers
MISChttps://patchstack.com/database/vulnerability/2j-slideshow/wordpress-slideshow-image-slider-by-2j-plugin-1-3-54-authenticated-reflected-cross-site-scripting-xss-vulnerability