Team Circle Image Slider With Lightbox, CVE-2022-0648

CVE, Research URL: CVE-2022-0648
Home page URL: Security reports for Team Circle Image Slider With Lightbox
Application: Team Circle Image Slider With Lightbox
Published on: Mar 14, 2022
Research Description: The Team Circle Image Slider With Lightbox WordPress plugin before 1.0.16 does not sanitize and escape the order_pos parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting.
Affected versions: Min -, max 1.0.16.
Status: vulnerable