CVE-2024-32600

🗓️ 18 Apr 2024 10:18:31Reported by PatchstackType

Deserialization vulnerability in Averta Master Slider version n/a - 3.9.

Reporter	Title	Published	Views	Family All 10
CNNVD	WordPress Plugin Master Slider 代码问题漏洞	18 Apr 202400:00	–	cnnvd
Cvelist	CVE-2024-32600 WordPress Master Slider plugin <= 3.9.5 - PHP Object Injection vulnerability	18 Apr 202410:18	–	cvelist
EUVD	EUVD-2024-30402	3 Oct 202520:07	–	euvd
NVD	CVE-2024-32600	18 Apr 202411:15	–	nvd
Patchstack	WordPress Master Slider Plugin <= 3.9.5 is vulnerable to PHP Object Injection	16 Apr 202400:00	–	patchstack
Patchstack	WordPress Master Slider plugin <= 3.9.5 - PHP Object Injection vulnerability	16 Apr 202415:45	–	patchstack
RedhatCVE	CVE-2024-32600	5 Feb 202507:09	–	redhatcve
Vulnrichment	CVE-2024-32600 WordPress Master Slider plugin <= 3.9.5 - PHP Object Injection vulnerability	18 Apr 202410:18	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (April 15, 2024 to April 21, 2024)	25 Apr 202415:56	–	wordfence
WPVulnDB	Master Slider < 3.9.7 - Unauthenticated PHP Object Injection	24 Apr 202400:00	–	wpvulndb

NVD

Vulners

Vulnrichment

Node

averta master_sliderRange<3.9.7wordpress

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "master-slider",
    "product": "Master Slider",
    "vendor": "Averta",
    "versions": [
      {
        "changes": [
          {
            "at": "3.9.7",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "3.9.5",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/vulnerability/master-slider/wordpress-master-slider-plugin-3-9-5-php-object-injection-vulnerability

28 Apr 2026 19:24Current

5.2Medium risk

Vulners AI Score5.2

CVSS 3.18.3 - 9.6

EPSS0.00692

SSVC

CWE-502