8 matches found
EUVD-2024-34286
Malicious code in bioql PyPI...
CVE-2024-11884
The Wp photo text slider 50 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wp-photo-slider' shortcode in all versions up to, and including, 8.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
CVE-2024-11884 Wp photo text slider 50 <= 8.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Wp photo text slider 50 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wp-photo-slider' shortcode in all versions up to, and including, 8.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
PT-2024-17321 · WordPress · Wp Photo Text Slider 50
Name of the Vulnerable Software and Affected Versions: Wp photo text slider 50 plugin for WordPress versions up to, and including, 8.1 Description: The Wp photo text slider 50 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wp-photo-slider' shortcode due to...
WordPress Wp photo text slider 50 plugin <= 8.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by theviper17y in WordPress Plugin Wp photo text slider 50 versions = 8.1...
CVE-2023-5439
The Wp photo text slider 50 plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 8.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...
CVE-2023-5439
CVE-2023-5439 affects the WordPress plugin “Wp photo text slider 50” (versions up to and including 8.0). It is an authenticated SQL Injection via the plugin shortcode caused by insufficient escaping in user input and poor query preparation, enabling subscribers+ to append SQL that can extract dat...
WordPress Plugin Wp photo text slider SQL Injection Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerability exists i...