Lucene search
+L

28 matches found

Nuclei
Nuclei
added 17 hours ago85 views

WordPress WP TripAdvisor Review Slider <10.8 - Authenticated SQL Injection

WordPress WP TripAdvisor Review Slider plugin before 10.8 is susceptible to authenticated SQL injection. The plugin does not properly sanitize and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as subscriber. This can lead...

8.8CVSS8.1AI score0.04356EPSS
Exploits2References4
CVE
CVE
added yesterday8 views

CVE-2026-15651

The CVE concerns the WP TripAdvisor Review Slider plugin for WordPress. All versions up to 14.6 are vulnerable to a generic SQL Injection via the filtersource parameter due to insufficient escaping of user input and lack of proper SQL query preparation. Exploitation is described as feasible by au...

4.9CVSS6.1AI score0.00288EPSS
Exploits0References6
EUVD
EUVD
added yesterday8 views

EUVD-2026-44890

The WP TripAdvisor Review Slider plugin for WordPress is vulnerable to generic SQL Injection via the 'filtersource' parameter in all versions up to, and including, 14.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This...

4.9CVSS6.1AI score0.00288EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/03/26 5:2 p.m.5 views

CVE-2026-32490

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jgwhite33 WP TripAdvisor Review Slider wp-tripadvisor-review-slider allows Stored XSS.This issue affects WP TripAdvisor Review Slider: from n/a through = 14.1...

6.5CVSS5.8AI score0.00156EPSS
Exploits0References1
NVD
NVD
added 2026/03/25 5:17 p.m.7 views

CVE-2026-32490

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jgwhite33 WP TripAdvisor Review Slider wp-tripadvisor-review-slider allows Stored XSS.This issue affects WP TripAdvisor Review Slider: from n/a through = 14.1...

6.5CVSS0.00156EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/25 4:14 p.m.1 views

CVE-2026-32490

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jgwhite33 WP TripAdvisor Review Slider wp-tripadvisor-review-slider allows Stored XSS.This issue affects WP TripAdvisor Review Slider: from n/a through = 14.1...

5.8AI score0.00156EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/25 4:14 p.m.4 views

CVE-2026-32490 WordPress WP TripAdvisor Review Slider plugin <= 14.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jgwhite33 WP TripAdvisor Review Slider wp-tripadvisor-review-slider allows Stored XSS.This issue affects WP TripAdvisor Review Slider: from n/a through = 14.1...

6.5CVSS5.8AI score0.00156EPSS
Exploits0References1
CVE
CVE
added 2026/03/25 4:14 p.m.9 views

CVE-2026-32490

The connected document identifies a concrete vulnerability: Cross Site Scripting (XSS) in the WordPress plugin WP TripAdvisor Review Slider, affecting versions up to 14.1. The vulnerability details are limited to the existence of an XSS issue discovered by Doan Dinh Van; no root cause, affected f...

6.5CVSS5.8AI score0.00156EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/25 4:14 p.m.26 views

CVE-2026-32490 WordPress WP TripAdvisor Review Slider plugin <= 14.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jgwhite33 WP TripAdvisor Review Slider wp-tripadvisor-review-slider allows Stored XSS.This issue affects WP TripAdvisor Review Slider: from n/a through = 14.1...

6.5CVSS0.00156EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.4 views

PT-2026-28004

Name of the Vulnerable Software and Affected Versions WP TripAdvisor Review Slider versions n/a through 14.1 Description The software contains a flaw due to improper handling of user-supplied data during the creation of web pages, which can lead to cross-site scripting XSS. This allows for the...

6.5CVSS5.7AI score0.00156EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.8 views

WordPress plugin WP TripAdvisor Review Slider 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...

6.5CVSS5.8AI score0.00156EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/03/23 2:31 p.m.6 views

WordPress WP TripAdvisor Review Slider plugin <= 14.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Doan Dinh Van in WordPress Plugin WP TripAdvisor Review Slider versions = 14.1...

6.5CVSS5.8AI score0.00156EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-35391

Malicious code in bioql PyPI...

7.6CVSS6.6AI score0.00394EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:39 a.m.11 views

CVE-2023-0261

The WP TripAdvisor Review Slider WordPress plugin before 10.8 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as subscriber...

8.8CVSS7.9AI score0.04356EPSS
Exploits2References1
Cvelist
Cvelist
added 2024/06/03 10:27 a.m.23 views

CVE-2024-35630 WordPress WP TripAdvisor Review Slider plugin <= 12.6 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in LJ Apps WP TripAdvisor Review Slider allows Blind SQL Injection.This issue affects WP TripAdvisor Review Slider: from n/a through 12.6...

7.6CVSS8.1AI score0.00394EPSS
Exploits0References1
OSV
OSV
added 2024/01/01 3:15 p.m.4 views

CVE-2023-6037

The WP TripAdvisor Review Slider WordPress plugin before 11.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.8AI score0.00402EPSS
Exploits2References1
NVD
NVD
added 2024/01/01 3:15 p.m.25 views

CVE-2023-6037

The WP TripAdvisor Review Slider WordPress plugin before 11.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS4.7AI score0.00402EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2024/01/01 2:18 p.m.4 views

CVE-2023-6037 WP TripAdvisor Review Slider < 11.9 - Admin+ Stored XSS

The WP TripAdvisor Review Slider WordPress plugin before 11.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.6AI score0.00402EPSS
Exploits2References1
CVE
CVE
added 2024/01/01 2:18 p.m.58 views

CVE-2023-6037

CVE-2023-6037 affects the WordPress plugin WP TripAdvisor Review Slider up to version 11.9. The flaw arises because the plugin does not sanitize and escape certain settings, enabling Stored Cross-Site Scripting by high-privilege users (e.g., admin), even when the unfiltered_html capability is dis...

4.8CVSS4.7AI score0.00402EPSS
Exploits2References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/01 12:0 a.m.8 views

PT-2024-14859 · WordPress · Wp Tripadvisor Review Slider

Name of the Vulnerable Software and Affected Versions: WP TripAdvisor Review Slider WordPress plugin versions prior to 11.9 Description: The WP TripAdvisor Review Slider WordPress plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to...

4.8CVSS4.7AI score0.00402EPSS
Exploits2References9
Rows per page
Query Builder