CVE-2024-29925

Severity CVSS v4.0:
Pending analysis
Type:
CWE-79 Cross-Site Scripting (XSS)
Publication date:
27/03/2024
Last modified:
10/03/2025

Description

Improper Neutralization of Input During Web Page Generation (&amp;#39;Cross-site Scripting&amp;#39;) vulnerability in wpWax Post Grid, Slider &amp; Carousel Ultimate allows Stored XSS.This issue affects Post Grid, Slider &amp; Carousel Ultimate: from n/a through 1.6.6.<br /> <br />

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:wpwax:post_grid\,_slider_\&_carousel_ultimate:*:*:*:*:*:wordpress:*:* 1.6.7 (excluding)