Vulnerabilities > CVE-2022-29440 - Unspecified vulnerability in Promotion Slider Project Promotion Slider 3.3.4
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
LOW Integrity impact
LOW Availability impact
NONE Summary
Multiple Authenticated (contributor or higher user role) Stored Cross-Site Scripting (XSS) vulnerabilities in Promotion Slider plugin <= 3.3.4 at WordPress.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- https://patchstack.com/database/vulnerability/promotion-slider/wordpress-promotion-slider-plugin-3-3-4-multiple-authenticated-stored-cross-site-scripting-xss-vulnerabilities
- https://patchstack.com/database/vulnerability/promotion-slider/wordpress-promotion-slider-plugin-3-3-4-multiple-authenticated-stored-cross-site-scripting-xss-vulnerabilities
- https://wordpress.org/plugins/promotion-slider/
- https://wordpress.org/plugins/promotion-slider/