Lucene search
+L

115 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:50 a.m.4 views

CVE-2024-11899

The Slider Pro Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'sliderpro' shortcode in all versions up to, and including, 1.4.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS5.8AI score0.00331EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:30 a.m.5 views

CVE-2023-41865

Missing Authorization vulnerability in bqworks Slider Pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Slider Pro: from n/a through 4.8.6...

4.3CVSS8.5AI score0.00399EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:15 a.m.8 views

CVE-2023-47507

Deserialization of Untrusted Data vulnerability in Master Slider Master Slider Pro.This issue affects Master Slider Pro: from n/a through 3.6.5...

9.8CVSS8.5AI score0.00388EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:9 a.m.12 views

CVE-2023-47508

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Averta Master Slider Pro plugin = 3.6.5 versions...

7.1CVSS5.9AI score0.00412EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:0 a.m.8 views

CVE-2023-47506

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Master slider Master Slider Pro allows SQL Injection.This issue affects Master Slider Pro: from n/a through 3.6.5...

8.8CVSS8.3AI score0.00697EPSS
Exploits0References1
CVE
CVE
added 2025/01/07 3:21 a.m.41 views

CVE-2024-11899

CVE-2024-11899 : Slider Pro Lite (WordPress) is vulnerable to Stored Cross-Site Scripting via the plugin shortcode sliderpro in all versions up to and including 1.4.1. Root cause: insufficient input sanitization and output escaping on user-supplied attributes. Impact: authenticated attackers with...

6.4CVSS5.7AI score0.00331EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/01/07 3:21 a.m.14 views

CVE-2024-11899 Slider Pro Lite <= 1.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Slider Pro Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'sliderpro' shortcode in all versions up to, and including, 1.4.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS0.00331EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/01/07 3:21 a.m.6 views

CVE-2024-11899 Slider Pro Lite <= 1.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Slider Pro Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'sliderpro' shortcode in all versions up to, and including, 1.4.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS5.8AI score0.00331EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/01/07 12:0 a.m.3 views

PT-2025-1710 · WordPress · Slider Pro Lite

Name of the Vulnerable Software and Affected Versions: Slider Pro Lite plugin for WordPress versions up to, and including, 1.4.1 Description: The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in the plugin's sliderpro shortcode. This allows...

6.4CVSS7.2AI score0.00331EPSS
Exploits0References9
CNNVD
CNNVD
added 2025/01/07 12:0 a.m.5 views

WordPress plugin Slider Pro Lite 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...

6.4CVSS7.6AI score0.00331EPSS
Exploits0References5
Patchstack
Patchstack
added 2025/01/06 5:30 p.m.4 views

WordPress Slider Pro Lite plugin <= 1.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by yudha in WordPress Plugin Slider Pro Lite versions = 1.4.1...

6.4CVSS5.7AI score0.00331EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/12/13 3:15 p.m.7 views

CVE-2023-41865

Missing Authorization vulnerability in bqworks Slider Pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Slider Pro: from n/a through 4.8.6...

4.3CVSS0.00399EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/13 2:24 p.m.19 views

CVE-2023-41865 WordPress Slider Pro plugin <= 4.8.6 - Broken Access Control vulnerability

Missing Authorization vulnerability in bqworks Slider Pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Slider Pro: from n/a through 4.8.6...

4.3CVSS0.00399EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/13 2:24 p.m.10 views

CVE-2023-41865 WordPress Slider Pro plugin <= 4.8.6 - Broken Access Control vulnerability

Missing Authorization vulnerability in bqworks Slider Pro sliderpro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Slider Pro: from n/a through = 4.8.6...

4.3CVSS7.3AI score0.00399EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/13 12:0 a.m.3 views

WordPress plugin Slider Pro 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

4.3CVSS8.6AI score0.00399EPSS
Exploits0References1
OSV
OSV
added 2023/12/20 2:15 p.m.4 views

CVE-2023-47507

Deserialization of Untrusted Data vulnerability in Master Slider Master Slider Pro.This issue affects Master Slider Pro: from n/a through 3.6.5...

9.8CVSS7.3AI score0.00388EPSS
Exploits0References1
NVD
NVD
added 2023/12/20 2:15 p.m.28 views

CVE-2023-47507

Deserialization of Untrusted Data vulnerability in Master Slider Master Slider Pro.This issue affects Master Slider Pro: from n/a through 3.6.5...

9.8CVSS0.00388EPSS
Exploits0References1
Prion
Prion
added 2023/12/20 2:15 p.m.19 views

Deserialization of untrusted data

Deserialization of Untrusted Data vulnerability in Master Slider Master Slider Pro.This issue affects Master Slider Pro: from n/a through 3.6.5...

7.5CVSS7.2AI score0.00388EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/12/20 1:25 p.m.42 views

CVE-2023-47507 WordPress Master Slider Pro Plugin <= 3.6.5 is vulnerable to PHP Object Injection

Deserialization of Untrusted Data vulnerability in Master Slider Master Slider Pro.This issue affects Master Slider Pro: from n/a through 3.6.5...

7.1CVSS9.7AI score0.00388EPSS
Exploits0References1
CVE
CVE
added 2023/12/20 1:25 p.m.110 views

CVE-2023-47507

CVE-2023-47507 affects Master Slider Pro (WordPress)

9.8CVSS8.5AI score0.00388EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder