Volerion logoVolerion
Volerion logoVolerion

Averta Master Slider Pro DOM-Based Cross-Site Scripting Vulnerability

Vulnerability

A cross-site scripting (XSS) vulnerability has been identified in the Averta Master Slider Pro plugin, specifically in versions through 3.7.12. This issue arises from improper input sanitization during web page generation, allowing for DOM-based XSS attacks.

Impact

Exploitation of this vulnerability allows for DOM-based cross-site scripting, where an attacker can inject malicious scripts that are executed in the context of the user's browser.

Added: Dec 9, 2025, 6:49 PM
Updated: Dec 9, 2025, 6:49 PM

Vulnerability Rating

Custom Algorithm
spread
5.2
impact
1.7
exploitability
6.5
remediation
0.0
relevance
1.4
threat
0.0
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.