Vulnerabilities > CVE-2024-29925 - Unspecified vulnerability in Wpwax Post Grid, Slider & Carousel Ultimate

CVSS 5.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

wpwax

NVD

Published: 2024-03-27

Updated: 2025-03-10

Summary

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpWax Post Grid, Slider & Carousel Ultimate allows Stored XSS.This issue affects Post Grid, Slider & Carousel Ultimate: from n/a through 1.6.6.

Vulnerable Configurations

Part	Description	Count
Application	Wpwax Wpwax Post Grid, Slider & Carousel Ultimate 1.6.0 Wpwax Post Grid, Slider & Carousel Ultimate 1.6.1 Wpwax Post Grid, Slider & Carousel Ultimate 1.6.2 Wpwax Post Grid, Slider & Carousel Ultimate 1.6.3 Wpwax Post Grid, Slider & Carousel Ultimate 1.6.4 Wpwax Post Grid, Slider & Carousel Ultimate 1.6.5 Wpwax Post Grid, Slider & Carousel Ultimate 1.6.6	7

Summary

Vulnerable Configurations

References