WordPress Slider Hero cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. cross-site scripting vulnerability exists in versions prior to WordPress Slider Hero 8.4.4, which stems from unescaped slider names and can be exploited by attackers with high privileges, such as administrators, to launch cross-site scripting attacks.