CVE-2026-5767 SlideShowPro SC <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'album' Shortcode Attribute

The SlideShowPro SC plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's slideShowProSC shortcode in all versions up to, and including, 1.0.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

EUVD-2014-5747

Malware in sbrugna...

EUVD-2007-5046

Malware in sbrugna...

Microsoft Windows: Prevent enabling lock screen slide show

This test checks the setting for policy OpenVAS Vulnerability Test $Id: wincplocklockscreenslideshow.nasl 11337 2018-09-11 14:23:53Z emoss $ Check value for Prevent enabling lock screen slide show Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net...

apache-poi: denial of service in HSLFSlideShow via corrupted PPT file

A denial of service flaw was found in the way the HSLFSlideShow class implementation in Apache POI handled certain PPT files. A remote attacker could submit a specially crafted PPT file that would cause Apache POI to hang indefinitely...

Mini Video Maker - Slide Show - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Mini Video Maker - Slide Show published at the 'play' market has multiple vulnerabilities...

Apache POI Denial of Service Vulnerability

Apache POI is a free and open source cross-platform Java API written in Java . A denial of service vulnerability in HSLFSlideShow in Apache POI versions prior to 3.11 allows remote attackers to cause a denial of service infinite loop and deadlock by crafting a PPT file...

DEBIAN-CVE-2014-9527

HSLFSlideShow in Apache POI before 3.11 allows remote attackers to cause a denial of service infinite loop and deadlock via a crafted PPT file...

CVE-2014-5860

The Slide Show Creator aka com.amem application 4.4.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Information disclosure

The Slide Show Creator aka com.amem application 4.4.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5860

The CVE-2014-5860 entry concerns the Android app Slide Show Creator (com.amem) version 4.4.3. The vulnerability arises because the app does not verify X.509 certificates from SSL servers, allowing a man-in-the-middle attacker to spoof servers and obtain sensitive information via a crafted certifi...

aspcms background holding shell vulnerability(non-add module)and repair method-vulnerability warning-the black bar safety net

aspcms in the old version, you can add a template directly to add the asp. But the new aspcms has been restricted to add the template format is html,js,css,and of course if you are experiencing iis6 words or by iis6 parsing vulnerability put the file name into 1. asp;. html this format to get to...

CVE-2010-4936

SQL injection vulnerability in the Slide Show comslideshow component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php...

CVE-2010-4936

SQL injection vulnerability in the Slide Show comslideshow component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php...

CVE-2010-4936

CVE-2010-4936 affects the Joomla! Slide Show (com_slideshow) component. The vulnerability is an SQL injection exposed via the catid parameter to index.php, allowing remote attackers to execute arbitrary SQL commands. The data sources describe the affected component and vulnerability class consist...

CVE-2011-3010

Multiple cross-site scripting XSS vulnerabilities in TWiki before 5.1.0 allow remote attackers to inject arbitrary web script or HTML via 1 the newtopic parameter in a WebCreateNewTopic action, related to the TWiki.WebCreateNewTopicTemplate topic; or 2 the query string to SlideShow.pm in the...

Fedora Update for feh FEDORA-2011-8750

Check for the Version of feh OpenVAS Vulnerability Test Fedora Update for feh FEDORA-2011-8750 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...

Zinkwazi PHPSlideShow Multiple Vulnerability

Exploit for php platform in category web applications ============================================ Zinkwazi PHPSlideShow Multiple Vulnerability ============================================ 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, ...

Remote file inclusion

PHP remote file inclusion vulnerability in admin.slideshow1.php in the Flash Slide Show comslideshow component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfiglivesite parameter...

CVE-2007-5065

CVE-2007-5065 : A PHP remote file inclusion vulnerability exists in Joomla!’s Flash Slide Show (com_slideshow) component, specifically in admin.slideshow1.php, where an attacker can abuse the mosConfig_live_site parameter to execute arbitrary PHP code remotely. This vulnerability affects the Joom...