Input validation vulnerability in Carousel, Recent Post Slider and Banner Slider 2.0

The Carousel, Recent Post Slider and Banner Slider plugin for WordPress is not secure in versions up to and including 2.0. Someone with Contributor level permissions or higher can insert malicious web scripts into pages that will run when a user visits the page. This is because the plugin does not properly check the information it is given or prevent it from being used in an unsafe way.

Detected in:

Carousel, Recent Post Slider and Banner Slider fixed vulnerable versions: >= * <= 2.0

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Is this information incorrect? Please leave us a message.