CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/03/06 7:53 a.m.•2 views

CVE-2026-28109

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup LambertGroup - AllInOne - Content Slider all-in-one-contentSlider allows Reflected XSS.This issue affects LambertGroup - AllInOne - Content Slider: from n/a through = 3.8...

7.1CVSS5.8AI score0.00146EPSS

RedhatCVE•added 2026/03/06 7:53 a.m.•2 views

CVE-2026-28112

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup AllInOne - Banner Rotator all-in-one-bannerRotator allows Reflected XSS.This issue affects AllInOne - Banner Rotator: from n/a through = 3.8...

7.1CVSS5.8AI score0.00146EPSS

EUVD•added 2026/03/05 6:30 a.m.•4 views

EUVD-2026-9763

EUVD•added 2026/03/05 6:30 a.m.•5 views

EUVD-2026-9764

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup LambertGroup - AllInOne - Banner with Playlist all-in-one-bannerWithPlaylist allows Reflected XSS.This issue affects LambertGroup - AllInOne - Banner with Playlist: from n/a through =...

EUVD•added 2026/03/05 6:30 a.m.•5 views

EUVD-2026-9765

EUVD•added 2026/03/05 6:30 a.m.•3 views

EUVD-2026-9762

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup LambertGroup - AllInOne - Banner with Thumbnails all-in-one-thumbnailsBanner allows Reflected XSS.This issue affects LambertGroup - AllInOne - Banner with Thumbnails: from n/a through ...

7.1CVSS5.9AI score0.0018EPSS

NVD•added 2026/03/05 6:16 a.m.•3 views

CVE-2026-28112

NVD•added 2026/03/05 6:16 a.m.•4 views

CVE-2026-28108

7.1CVSS0.0018EPSS

NVD•added 2026/03/05 6:16 a.m.•4 views

CVE-2026-28109

CVE•added 2026/03/05 5:54 a.m.•10 views

CVE-2026-28112

CVE-2026-28112 describes a Reflected Cross-Site Scripting (XSS) vulnerability in the WordPress plugin AllInOne - Banner Rotator (also listed as all-in-one-bannerRotator). The issue affects versions

CVE•added 2026/03/05 5:54 a.m.•14 views

CVE-2026-28110

CVE-2026-28110 is a Reflected Cross-Site Scripting vulnerability in LambertGroup AllInOne - Banner with Playlist (plugin: all-in-one-bannerWithPlaylist) affecting versions up to 3.8. The issue is a Cross-site Scripting flaw that can be triggered via input reflected in the web page; CVSS v3.1 base...

Cvelist•added 2026/03/05 5:54 a.m.•31 views

CVE-2026-28110 WordPress LambertGroup - AllInOne - Banner with Playlist plugin <= 3.8 - Reflected Cross Site Scripting (XSS) vulnerability

Cvelist•added 2026/03/05 5:54 a.m.•27 views

CVE-2026-28109 WordPress LambertGroup - AllInOne - Content Slider plugin <= 3.8 - Reflected Cross Site Scripting (XSS) vulnerability

Vulnrichment•added 2026/03/05 5:54 a.m.•5 views

CVE-2026-28109 WordPress LambertGroup - AllInOne - Content Slider plugin <= 3.8 - Reflected Cross Site Scripting (XSS) vulnerability

Vulnrichment•added 2026/03/05 5:54 a.m.•3 views

CVE-2026-28110 WordPress LambertGroup - AllInOne - Banner with Playlist plugin <= 3.8 - Reflected Cross Site Scripting (XSS) vulnerability

Cvelist•added 2026/03/05 5:54 a.m.•28 views

CVE-2026-28112 WordPress AllInOne - Banner Rotator plugin <= 3.8 - Reflected Cross Site Scripting (XSS) vulnerability

ATTACKERKB•added 2026/03/05 5:54 a.m.•7 views

CVE-2026-28112

5.9AI score0.00146EPSS

ATTACKERKB•added 2026/03/05 5:54 a.m.•6 views

CVE-2026-28110

5.9AI score0.00146EPSS

CVE•added 2026/03/05 5:54 a.m.•17 views

CVE-2026-28109

Summary: CVE-2026-28109 is a reflected XSS vulnerability in LambertGroup AllInOne - Content Slider (plugin) for WordPress, with impact described as Cross-site Scripting and affected versions up to 3.8. Affected component: LambertGroup – AllInOne – Content Slider (WordPress plugin). Root cause (as...