5 matches found
Slider & Popup Builder by Depicter <= 3.6.1 - Unauthenticated SQL Injection
The Slider & Popup Builder by Depicter plugin for WordPress is vulnerable to generic SQL Injection via the ‘s' parameter in all versions up to, and including, 3.6.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.This makes ...
CVE-2025-2011
creationtimestamp| type| source ---|---|--- 2025-05-06 10:21:06+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15084 2025-05-06 14:29:07+00:00| seen| https://t.me/cvedetector/24599 2025-05-06 20:18:23+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/35814...
CVE-2025-2011
The Slider & Popup Builder by Depicter plugin for WordPress is vulnerable to generic SQL Injection via the ‘s' parameter in all versions up to, and including, 3.6.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes...
CVE-2025-2011 Slider & Popup Builder by Depicter <= 3.6.1 - Unauthenticated SQL Injection via 's' Parameter
The Slider & Popup Builder by Depicter plugin for WordPress is vulnerable to generic SQL Injection via the ‘s' parameter in all versions up to, and including, 3.6.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes...
WordPress Depicter Slider plugin <= 3.6.1 - Unauthenticated SQL Injection via 's' Parameter vulnerability
Unauthenticated SQL Injection via 's' Parameter vulnerability discovered by Muhamad Visat in WordPress Plugin Depicter Slider versions = 3.6.1...