Lucene search
K

70 matches found

NVD
NVD
added 2026/06/15 9:16 p.m.7 views

CVE-2026-39451

Unauthenticated Cross Site Scripting XSS in WP Google Review Slider = 18.0 versions...

6.3CVSS0.00175EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/15 8:17 p.m.24 views

CVE-2026-39451 WordPress WP Google Review Slider plugin <= 18.0 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in WP Google Review Slider = 18.0 versions...

6.3CVSS0.00175EPSS
Exploits0References1
CVE
CVE
added 2026/06/15 8:17 p.m.13 views

CVE-2026-39451

CVE-2026-39451 concerns the WordPress WP Google Review Slider plugin (versions &lt;= 18.0), with an unauthenticated Cross-Site Scripting (XSS) vulnerability reported. The Patchstack entry notes the vulnerability (discovered by hhhai) in versions

6.3CVSS5.1AI score0.00175EPSS
Exploits0References1
NVD
NVD
added 2026/06/04 2:16 p.m.10 views

CVE-2019-25745

WordPress Plugin Google Review Slider 6.1 contains a time-based blind SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'tid' parameter. Attackers can send GET requests to the admin interface with malicious 'tid'...

8.8CVSS0.00262EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/04 1:22 p.m.35 views

CVE-2019-25745 WordPress Plugin Google Review Slider 6.1 SQL Injection via tid

WordPress Plugin Google Review Slider 6.1 contains a time-based blind SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'tid' parameter. Attackers can send GET requests to the admin interface with malicious 'tid'...

8.8CVSS0.00262EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/04 1:22 p.m.13 views

EUVD-2019-20181

WordPress Plugin Google Review Slider 6.1 contains a time-based blind SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'tid' parameter. Attackers can send GET requests to the admin interface with malicious 'tid'...

8.8CVSS5.9AI score0.00262EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/06/04 1:22 p.m.10 views

CVE-2019-25745 WordPress Plugin Google Review Slider 6.1 SQL Injection via tid

WordPress Plugin Google Review Slider 6.1 contains a time-based blind SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'tid' parameter. Attackers can send GET requests to the admin interface with malicious 'tid'...

8.8CVSS5.9AI score0.00262EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/04 1:22 p.m.6 views

CVE-2019-25745

WordPress Plugin Google Review Slider 6.1 contains a time-based blind SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'tid' parameter. Attackers can send GET requests to the admin interface with malicious 'tid'...

8.8CVSS5.9AI score0.00262EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/06/04 1:22 p.m.18 views

CVE-2019-25745

CVE-2019-25745 affects WordPress Plugin Google Review Slider 6.1. The vulnerability is a time-based blind SQL injection in the tid parameter, exploitable via GET requests to the plugin’s admin interface by unauthenticated attackers to manipulate queries and potentially extract data. According to ...

8.8CVSS5.9AI score0.00262EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.13 views

PT-2026-46215

WordPress Plugin Google Review Slider 6.1 contains a time-based blind SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'tid' parameter. Attackers can send GET requests to the admin interface with malicious 'tid'...

8.8CVSS5.9AI score0.00262EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.5 views

WordPress plugin Google Review Slider SQL注入漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

8.8CVSS5.8AI score0.00262EPSS
Exploits0References3
Patchstack
Patchstack
added 2026/06/01 1:21 p.m.23 views

WordPress WP Google Review Slider plugin <= 18.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by hhhai in WordPress Plugin WP Google Review Slider versions = 18.0...

6.3CVSS5.5AI score0.00175EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/07 9:19 a.m.12 views

CVE-2024-2310

The WP Google Review Slider WordPress plugin before 13.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.00308EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/11/22 12:34 p.m.5 views

CVE-2025-66063

Missing Authorization vulnerability in jgwhite33 WP Google Review Slider wp-google-places-review-slider allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Google Review Slider: from n/a through = 17.4...

5.4CVSS6.9AI score0.00211EPSS
Exploits0References1
NVD
NVD
added 2025/11/21 1:15 p.m.3 views

CVE-2025-66063

Missing Authorization vulnerability in jgwhite33 WP Google Review Slider wp-google-places-review-slider allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Google Review Slider: from n/a through = 17.4...

5.4CVSS0.00211EPSS
Exploits0References1
CVE
CVE
added 2025/11/21 12:29 p.m.7 views

CVE-2025-66063

WP Google Review Slider plugin (WordPress) is affected by CVE-2025-66063: a Missing Authorization / Broken Access Control vulnerability in versions up to 17.4 due to misconfigured access controls. Red Hat/NVD/Patchstack entries confirm the issue and indicate a patched status for affected releases...

5.4CVSS6.6AI score0.00211EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/21 12:29 p.m.2 views

EUVD-2025-198478

Missing Authorization vulnerability in jgwhite33 WP Google Review Slider wp-google-places-review-slider allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Google Review Slider: from n/a through = 17.4...

5.4CVSS6.5AI score0.00211EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/11/21 12:29 p.m.2 views

CVE-2025-66063 WordPress WP Google Review Slider plugin <= 17.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in jgwhite33 WP Google Review Slider wp-google-places-review-slider allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Google Review Slider: from n/a through = 17.4...

5.4CVSS6.6AI score0.00211EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/21 12:29 p.m.9 views

CVE-2025-66063 WordPress WP Google Review Slider plugin <= 17.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in jgwhite33 WP Google Review Slider wp-google-places-review-slider allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Google Review Slider: from n/a through = 17.4...

5.4CVSS0.00211EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/21 12:0 a.m.1 views

WordPress plugin WP Google Review Slider 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blogging sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

5.4CVSS6.5AI score0.00211EPSS
Exploits0References1
Rows per page
Query Builder