Unrated severityNVD Advisory· Published Sep 26, 2022· Updated May 22, 2025
Slider Hero < 8.4.4 - Admin+ Stored Cross-Site Scripting
CVE-2022-3074
Description
The Slider Hero WordPress plugin before 8.4.4 does not escape the slider Name, which could allow high-privileged users to perform Cross-Site Scripting attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <8.4.4
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/90ebaedc-89df-413f-b22e-753d4dd5e1c3mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.