Logo Carousel < 3.4.2 - Contributor+ Stored Cross-Site Scripting
Description
The Logo Carousel WordPress plugin before 3.4.2 does not validate and escape the "Logo Margin" carousel option, which could allow users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Logo Carousel plugindescription
- Range: <3.4.2
Patches
Vulnerability mechanics
Root cause
"Missing input validation and output escaping on the "Logo Margin" carousel option allows stored cross-site scripting."
Attack vector
An attacker with a Contributor-level role (or higher) can inject arbitrary JavaScript into the "Logo Margin" carousel option. Because the plugin fails to validate and escape this option, the injected script is stored and later executed in the browsers of users who view the carousel [ref_id=1]. This is a classic Stored Cross-Site Scripting (XSS) attack path [CWE-79].
Affected code
The "Logo Margin" carousel option in the Logo Carousel WordPress plugin (logo-carousel-free) is the vulnerable field. The plugin does not validate or escape this option before storing or rendering it [ref_id=1]. No specific function or file path is named in the advisory.
What the fix does
The advisory states the vulnerability is fixed in version 3.4.2 of the plugin [ref_id=1]. No patch diff is provided in the bundle, so the specific code changes are unknown. The fix presumably adds proper input validation and output escaping to the "Logo Margin" option to prevent stored script injection.
Preconditions
- authAttacker must have at least a Contributor-level role on the WordPress site
- configThe Logo Carousel plugin must be installed and activated with version prior to 3.4.2
- inputAttacker must have access to edit or create a carousel with the 'Logo Margin' option
Generated on May 25, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
1- wpscan.com/vulnerability/2c3d8c21-ecd4-41ba-8183-2ecbd9a3df25mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.