WordPress Slideshow Plugin - Multiple Cross Site Scripting Vulnerabilities
WordPress Slideshow plugin is prone to multiple cross-site scripting vulnerabilities. These vulnerabilities allow an attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. In that way, an attacker can steal cookie-based authentication credentials and launch other attacks.
Update the plugin.
Type XSS (Cross Site Scripting) OWASP Top 10 A3: Cross Site Scripting (XSS)