123 matches found
CVE-2024-37222 WordPress Master Slider plugin <= 3.10.0 - Reflected Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability in Averta Master Slider allows Reflected XSS.This issue affects Master Slider: from n/a through 3.10.0...
CVE-2024-37222
Technical details about CVE-2024-37222 are not provided in the connected documents. The initial description mentions Reflected XSS in Master Slider up to 3.10.0, but no product/version specifics or mitigations are confirmed here. Monitor for updates.
PT-2024-27391 · Unknown · Averta Master Slider
Name of the Vulnerable Software and Affected Versions: Averta Master Slider versions 3.9.10 through 3.10.0 Description: The issue is a Cross Site Scripting XSS vulnerability, specifically Reflected XSS, in Averta Master Slider. This type of vulnerability allows an attacker to inject malicious...
WordPress plugin Averta Master Slider security vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...
CVE-2023-50900
Cross-Site Request Forgery CSRF vulnerability in Averta Master Slider.This issue affects Master Slider: from n/a through 3.9.10...
CVE-2023-50900
Cross-Site Request Forgery CSRF vulnerability in Averta Master Slider.This issue affects Master Slider: from n/a through 3.9.10...
CVE-2023-50900
CVE-2023-50900 affects the WordPress Master Slider plugin (versions <= 3.9.10). The vulnerability is a Cross-Site Request Forgery (CSRF) in Master Slider, with CVSSv3.1 base score 4.3 (NETWORK attack vector, LOW complexity, NONE confidentiality/availability impact, LOW integrity impact; user i...
CVE-2023-39163
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Averta Phlox Shop allows PHP Local File Inclusion.This issue affects Phlox Shop: from n/a through 2.0.0...
CVE-2023-38399
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Averta Phlox Portfolio allows PHP Local File Inclusion.This issue affects Phlox Portfolio: from n/a through 2.3.1...
CVE-2023-39163 WordPress Phlox Shop plugin <= 2.0.0 - Unauthenticated Local File Inclusion vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Averta Phlox Shop allows PHP Local File Inclusion.This issue affects Phlox Shop: from n/a through 2.0.0...
CVE-2023-39163 WordPress Phlox Shop plugin <= 2.0.0 - Unauthenticated Local File Inclusion vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Averta Phlox Shop allows PHP Local File Inclusion.This issue affects Phlox Shop: from n/a through 2.0.0...
CVE-2023-37888 WordPress Phlox Core Elements plugin <= 2.14.0 - Unauthenticated Local File Inclusion vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in By Averta Shortcodes and extra features for Phlox theme allows PHP Local File Inclusion.This issue affects Shortcodes and extra features for Phlox theme: from n/a through 2.14.0...
PT-2024-12775 · Unknown · Averta Phlox Shop
Name of the Vulnerable Software and Affected Versions: Averta Phlox Shop versions n/a through 2.0.0 Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as 'Path Traversal', which allows PHP Local File Inclusion in Averta Phlox Shop...
PT-2024-12725 · Unknown · Averta Phlox Portfolio
Name of the Vulnerable Software and Affected Versions: Averta Phlox Portfolio versions prior to 2.3.1 Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as 'Path Traversal', which allows PHP Local File Inclusion. This means that an...
CVE-2024-32600
Deserialization of Untrusted Data vulnerability in Averta Master Slider.This issue affects Master Slider: from n/a through 3.9.5...
CVE-2024-32600
Deserialization of Untrusted Data vulnerability in Averta Master Slider.This issue affects Master Slider: from n/a through 3.9.5...
CVE-2024-32600 WordPress Master Slider plugin <= 3.9.5 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in Averta Master Slider.This issue affects Master Slider: from n/a through 3.9.5...
CVE-2024-32600
CVE-2024-32600 describes a Deserialization of Untrusted Data vulnerability in Master Slider (Master Slider – Responsive Touch Slider). Affected range: from n/a through 3.9.5. The issue is categorized as an unauthenticated PHP Object Injection, enabling an attacker to exploit via deserialization o...
CVE-2024-32580
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Averta Master Slider allows Stored XSS.This issue affects Master Slider: from n/a through 3.9.8...
CVE-2024-32580
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Averta Master Slider allows Stored XSS.This issue affects Master Slider: from n/a through 3.9.8...