Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:43 a.m.6 views

CVE-2024-52492

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in gopiplus Image horizontal reel scroll slideshow image-horizontal-reel-scroll-slideshow allows Stored XSS.This issue affects Image horizontal reel scroll slideshow: from n/a through = 13.4...

5.9CVSS7.2AI score0.00306EPSS
Exploits0References1
NVD
NVD
added 2024/12/02 2:15 p.m.9 views

CVE-2024-52492

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in gopiplus Image horizontal reel scroll slideshow image-horizontal-reel-scroll-slideshow allows Stored XSS.This issue affects Image horizontal reel scroll slideshow: from n/a through = 13.4...

5.9CVSS0.00306EPSS
Exploits0References1
CVE
CVE
added 2024/12/02 1:48 p.m.40 views

CVE-2024-52492

CVE-2024-52492 details a Stored Cross-Site Scripting (XSS) flaw in the WordPress plugin Image horizontal reel scroll slideshow (versions

5.9CVSS7.2AI score0.00306EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/11/20 9:32 a.m.3 views

WordPress Image horizontal reel scroll slideshow plugin <= 13.4 - Stored Cross Site Scripting (XSS) vulnerability

Stored Cross Site Scripting XSS vulnerability discovered by UKO Patchstack Alliance in WordPress Plugin Image horizontal reel scroll slideshow versions = 13.4...

5.9CVSS5.8AI score0.00306EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/11/20 12:0 a.m.7 views

WordPress Image horizontal reel scroll slideshow Plugin <= 13.4 is vulnerable to Cross Site Scripting (XSS)

Software Image horizontal reel scroll slideshow Type Plugin Vulnerable versions = 13.4 Fixed in N/A OWASP Top 10 A4: Insecure Design Classification Cross Site Scripting XSS CVE CVE-2024-52492 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID f3bd39fc0f00 Credits UKO Required...

6.2AI score0.00306EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2023/12/19 12:0 a.m.19 views

Image horizontal reel scroll slideshow < 13.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

Description The Image horizontal reel scroll slideshow plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'ihrss-gallery' shortcode in versions up to, and including, 13.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS5.7AI score0.00445EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/12/19 12:0 a.m.16 views

WordPress Image horizontal reel scroll slideshow Plugin <= 13.3 is vulnerable to Cross Site Scripting (XSS)

Software Image horizontal reel scroll slideshow Type Plugin Vulnerable versions = 13.3 Fixed in 13.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5413 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID f4bff9d695d5 Credits...

6.4CVSS5.8AI score0.00445EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/12/12 12:0 a.m.7 views

The vulnerability of the Image Horizontal Reel Scroll Slideshow Plugin lies in its lack of measures to neutralize special elements, allowing attackers to execute arbitrary SQL queries.

The vulnerability of the Image Horizontal Reel Scroll Slideshow Plugin exists due to the failure to address the issue of eliminating special elements. Exploiting this vulnerability can allow a remote attacker to execute arbitrary SQL queries...

9CVSS7.5AI score0.01486EPSS
Exploits2References4Affected Software1
CVE
CVE
added 2023/10/31 8:32 a.m.96 views

CVE-2023-5412

CVE-2023-5412 affects the WordPress plugin Image horizontal reel scroll slideshow (

8.8CVSS6.7AI score0.01486EPSS
Exploits2References3Affected Software1
Patchstack
Patchstack
added 2023/10/30 12:0 a.m.17 views

WordPress Image horizontal reel scroll slideshow Plugin <= 13.2 is vulnerable to SQL Injection

Software Image horizontal reel scroll slideshow Type Plugin Vulnerable versions = 13.2 Fixed in 13.3 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-5412 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID 4f2c4949819b Credits István Márton Required...

8.8CVSS6.8AI score0.01486EPSS
Exploits2References2Affected Software1
Rows per page
Query Builder