Vulnerabilities (CVE)

Filtered by vendor 3d Cover Carousel Project Subscribe
Filtered by product 3d Cover Carousel
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-38318 1 3d Cover Carousel Project 1 3d Cover Carousel 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
The 3D Cover Carousel WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the id parameter in the ~/cover-carousel.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.0.