CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/06/15 12:0 p.m.•7 views

CVE-2016-20074

CVE-2016-20074 affects WordPress the Lazy Content Slider Plugin version 3.4. The issue is a CSRF that lets an attacker trick authenticated admins into submitting POST requests to lzcs_admin.php to alter plugin settings such as lzcs_color and lzcs_count. The vulnerability arises from insufficient ...

5.3CVSS5.2AI score0.00106EPSS

Cvelist•added 2026/06/15 12:0 p.m.•27 views

CVE-2016-20074 WordPress Lazy Content Slider Plugin 3.4 CSRF

5.3CVSS0.00106EPSS

EUVD•added 2026/06/15 12:0 p.m.•4 views

EUVD-2016-10886

5.3CVSS5.1AI score0.00106EPSS

Vulnrichment•added 2026/06/15 12:0 p.m.•5 views

CVE-2016-20074 WordPress Lazy Content Slider Plugin 3.4 CSRF

5.3CVSS5.1AI score0.00106EPSS

Positive Technologies•added 2026/06/15 12:0 a.m.•10 views

PT-2026-49212

5.3CVSS5.1AI score0.00106EPSS

Exploits0References3

RedhatCVE•added 2026/03/06 7:53 a.m.•2 views

CVE-2026-28109

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup LambertGroup - AllInOne - Content Slider all-in-one-contentSlider allows Reflected XSS.This issue affects LambertGroup - AllInOne - Content Slider: from n/a through = 3.8...

7.1CVSS5.8AI score0.00146EPSS

EUVD•added 2026/03/05 6:30 a.m.•4 views

EUVD-2026-9763

NVD•added 2026/03/05 6:16 a.m.•4 views

CVE-2026-28109

7.1CVSS0.00146EPSS

ATTACKERKB•added 2026/03/05 5:54 a.m.•4 views

CVE-2026-28109

5.9AI score0.00146EPSS

Cvelist•added 2026/03/05 5:54 a.m.•27 views

CVE-2026-28109 WordPress LambertGroup - AllInOne - Content Slider plugin <= 3.8 - Reflected Cross Site Scripting (XSS) vulnerability

7.1CVSS0.00146EPSS

Vulnrichment•added 2026/03/05 5:54 a.m.•5 views

CVE-2026-28109 WordPress LambertGroup - AllInOne - Content Slider plugin <= 3.8 - Reflected Cross Site Scripting (XSS) vulnerability

CVE•added 2026/03/05 5:54 a.m.•17 views

CVE-2026-28109

Summary: CVE-2026-28109 is a reflected XSS vulnerability in LambertGroup AllInOne - Content Slider (plugin) for WordPress, with impact described as Cross-site Scripting and affected versions up to 3.8. Affected component: LambertGroup – AllInOne – Content Slider (WordPress plugin). Root cause (as...

Positive Technologies•added 2026/03/05 12:0 a.m.•6 views

PT-2026-23383

5.9AI score0.00146EPSS

CNNVD•added 2026/03/05 12:0 a.m.•4 views

WordPress plugin LambertGroup - AllInOne - Content Slider 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

7.1CVSS5.7AI score0.00146EPSS

Patchstack•added 2026/02/26 11:50 a.m.•7 views

WordPress LambertGroup - AllInOne - Content Slider plugin <= 3.8 - Reflected Cross Site Scripting (XSS) vulnerability

WordPress LambertGroup - AllInOne - Content Slider plugin = 3.8 - Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin LambertGroup - AllInOne - Content Slider versions = 3.8...

Exploits0Affected Software1

RedhatCVE•added 2026/01/23 9:15 p.m.•5 views

CVE-2026-22347

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in subhansanjaya Carousel Horizontal Posts Content Slider carousel-horizontal-posts-content-slider allows DOM-Based XSS.This issue affects Carousel Horizontal Posts Content Slider: from n/a through =...

6.5CVSS5.4AI score0.00161EPSS

NVD•added 2026/01/22 5:16 p.m.•5 views

CVE-2026-22347

6.5CVSS0.00161EPSS

CVE•added 2026/01/22 4:52 p.m.•7 views

CVE-2026-22347

CVE-2026-22347 affects the WordPress plugin Carousel Horizontal Posts Content Slider (

6.5CVSS5.4AI score0.00161EPSS