CVE-2023-30485

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Sep 4, 2023

Updated: Sep 6, 2023

CWE ID 79

Summary

CVE-2023-30485 is a newly disclosed Cross-Site Scripting (XSS) vulnerability affecting the Avartan Slider Lite plugin versions 1.5.3 and below, developed by Solwin Infotech for WordPress. An attacker can inject malicious scripts into a website's pages through reflections, potentially stealing user data or executing unauthorized actions. This issue poses a significant security risk, and website administrators using the affected plugin version should update it as soon as possible to mitigate the threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sW_x3p
https://www.cve.org/CVERecord?id=CVE-2023-30485
https://nvd.nist.gov/vuln/detail/CVE-2023-30485

Back to Vulnerability Database

CVE-2023-30485

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations