EPSS
Percentile
46.2%
The plugin does not properly sanitize the ‘search_term’ parameter, leading to Reflected Cross-Site Scripting vulnerability due to insufficient input sanitization and output escaping.
www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/wp-vertical-image-slider/wordpress-vertical-image-slider-plugin-1216-reflected-cross-site-scripting