CVE Catalog

CVE-2026-56039

HighCVSS 7.1
Published: Updated: Translated: NVD NIST

Summary

The vulnerability allows an unauthenticated attacker to perform XSS attacks in Quick Interest Slider versions up to and including 3.1.6.

Risk Assessment

An attacker can inject malicious JavaScript code, leading to session theft, redirects, or website defacement.

Recommendation

Immediately update the Quick Interest Slider plugin to a version newer than 3.1.6.

Original NVD description (English source)

Unauthenticated Cross Site Scripting (XSS) in Quick Interest Slider <= 3.1.6 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS