CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2026/04/15 9:16 a.m.•1 views

Exploits0References4

CVE-2026-5694

7.2CVSS0.00117EPSS

Vulnrichment•added 2026/04/15 7:45 a.m.•1 views

CVE-2026-5694 Quick Interest Slider <= 3.1.5 - Unauthenticated Stored Cross-Site Scripting

ATTACKERKB•added 2026/04/15 7:45 a.m.•1 views

CVE-2026-5694

CVE•added 2026/04/15 7:45 a.m.•7 views

Exploits0References4

CVE-2026-5694

The CVE concerns the Quick Interest Slider WordPress plugin, affected up to and including version 3.1.5. It is vulnerable to an unauthenticated stored XSS via the loan-amount and loan-period parameters, caused by insufficient input sanitization and output escaping. The vulnerability allows attack...

Cvelist•added 2026/04/15 7:45 a.m.•25 views

CVE-2026-5694 Quick Interest Slider <= 3.1.5 - Unauthenticated Stored Cross-Site Scripting

7.2CVSS0.00117EPSS

Positive Technologies•added 2026/04/15 12:0 a.m.•3 views

PT-2026-33012

Name of the Vulnerable Software and Affected Versions Quick Interest Slider versions prior to 3.1.6 Description The Quick Interest Slider plugin for WordPress contains a Stored Cross-Site Scripting issue caused by insufficient input sanitization and output escaping. Unauthenticated attackers can...

7.2CVSS5.3AI score0.00117EPSS

Exploits0References6

CNNVD•added 2026/04/15 12:0 a.m.•5 views

WordPress plugin Quick Interest Slider 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

7.2CVSS5.8AI score0.00117EPSS

Exploits0References1

Code423n4•added 2022/05/01 12:0 a.m.•9 views

Protocol fees during origination are based on another fee rather than on the loan amount

Lines of code Vulnerability details Impact Protocol fee revenue will be much lower than expected. If the average NFT loaned on the platform is worth $900, openFeeShare will be $9, and protocolFeeShare will be only $0.90. There would have to be more than 50,000 such loans to cover the cost of this...

Code423n4•added 2022/04/06 12:0 a.m.•7 views

Can force borrower to pay huge interest

Lines of code Vulnerability details Impact The loan amount is used as a min loan amount. It can be matched as high as possible realistically up to the collateral NFT's worth to remain in profit and the borrower has to pay interest on the entire amount instead of just on the desired loan amount wh...

Code423n4•added 2022/04/06 12:0 a.m.•3 views

loan amount is unbounded

Lines of code Vulnerability details The lender of a loan can lend an unbounded amount, which the borrower might not be able to pay its interest rate. Proof of Concept Alice wants to borrow 1000 USDC, she creates a loan with a 10% interest rate, and expects to pay 100 USDC after a year. Bob lends...

Code423n4•added 2022/04/06 12:0 a.m.•6 views

Allowing the lender to finalize a loan with an arbitrarily high amount can cause the borrower to default

Lines of code Vulnerability details Impact A borrower specifies a minimum loan amount. The lender can provide a loan as high as they want. As long as it's higher than the minimum value. A value too high might cause the borrower to not be able to pay it back. A higher loan means a higher facilitat...

6.7AI score

Code423n4•added 2022/04/05 12:0 a.m.•5 views

Borrower may be forced to pay more interest than he expected

Lines of code Vulnerability details Impact Creating a loan with a minimum amount, instead of a fixed/maximum amount may lead to forcing the borrower to pay more interest than he was expecting or hoping for. The user never knows the potential maximum amount he will need to pay, until the loan is...