LayerSlider <= 6.2.0 - CSRF / Authenticated Stored XSS & SQL Injection

Affects Plugin

fixed in version 6.2.1

References

URL http://wphutte.com/layer-slider-6-1-6-csrf-to-xss-to-sqli-with-poc/
URL https://support.kreaturamedia.com/docs/layersliderwp/documentation.html#release-log

Classification

Type MULTI

Miscellaneous

Submitter WpHutte
Submitter Website http://wphutte.com
Submitter Twitter @wphutte
Views 15121
Verified No
WPVDB ID 8822

Timeline

Publicly Published 2017-05-16 (about 3 years ago)
Added 2017-05-17 (about 3 years ago)
Last Updated 2019-11-01 (8 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin