CVE Catalog
CVE-2026-56039
HighCVSS 7.1Summary
The vulnerability allows an unauthenticated attacker to perform XSS attacks in Quick Interest Slider versions up to and including 3.1.6.
Risk Assessment
An attacker can inject malicious JavaScript code, leading to session theft, redirects, or website defacement.
Recommendation
Immediately update the Quick Interest Slider plugin to a version newer than 3.1.6.
Original NVD description (English source)
Unauthenticated Cross Site Scripting (XSS) in Quick Interest Slider <= 3.1.6 versions.

