cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-13627,https://securityvulnerability.io/vulnerability/CVE-2024-13627,Reflected Cross-Site Scripting Vulnerability in OWL Carousel Slider Plugin by WordPress,"The OWL Carousel Slider plugin for WordPress, up to version 2.2, contains a vulnerability that allows for reflected cross-site scripting. This occurs because the plugin fails to properly sanitize and escape a specific parameter when it is outputted back to the page. Attackers can exploit this flaw, potentially targeting high privilege users, such as administrators, to execute malicious scripts within the context of the affected site. Website administrators are strongly urged to update to the latest version of the plugin to mitigate risks.",WordPress,Owl Carousel Slider,4.7,MEDIUM,0.0004299999854993075,false,,false,false,true,2025-02-17T06:00:09.000Z,true,false,false,,2025-02-17T06:00:09.408Z,0
CVE-2024-24801,https://securityvulnerability.io/vulnerability/CVE-2024-24801,Stored XSS Vulnerability in OWL Carousel Slider,"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in LogicHunt OWL Carousel – WordPress Owl Carousel Slider allows Stored XSS.This issue affects OWL Carousel – WordPress Owl Carousel Slider: from n/a through 1.4.0.

",Wordpress,OWL Carousel – WordPress Owl Carousel Slider,5.4,MEDIUM,0.0004799999878741801,false,,false,false,false,,,false,false,,2024-02-10T07:53:36.601Z,0