Lucene search
K

14 matches found

EUVD
EUVD
added 2025/12/31 1:10 p.m.5 views

EUVD-2025-205951

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SEOthemes SEO Slider allows DOM-Based XSS.This issue affects SEO Slider: from n/a through 1.1.1...

6.5CVSS5.9AI score0.0013EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/31 1:10 p.m.32 views

CVE-2025-62097 WordPress SEO Slider plugin <= 1.1.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in seothemes SEO Slider seo-slider allows DOM-Based XSS.This issue affects SEO Slider: from n/a through = 1.1.1...

6.5CVSS0.0013EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/31 1:10 p.m.4 views

CVE-2025-62097 WordPress SEO Slider plugin <= 1.1.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SEOthemes SEO Slider allows DOM-Based XSS.This issue affects SEO Slider: from n/a through 1.1.1...

6.5CVSS6AI score0.0013EPSS
Exploits0References1
CVE
CVE
added 2025/12/31 1:10 p.m.11 views

CVE-2025-62097

CVE-2025-62097 — SEO Slider (SEOthemes) WordPress plugin suffers a DOM-based XSS due to improper input neutralization during page generation. The vulnerability is reported as an authenticated (Contributor+ or higher) Stored Cross-Site Scripting, with CVSS v3.1 base score 6.5 (MEDIUM). Wordfence n...

6.5CVSS5.9AI score0.0013EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/31 12:0 a.m.6 views

WordPress plugin SEO Slider 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS5.9AI score0.0013EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/31 12:0 a.m.7 views

PT-2025-54317

Name of the Vulnerable Software and Affected Versions SEO Slider versions through 1.1.1 Description The SEO Slider software contains a flaw related to improper input handling during web page creation, leading to a DOM-Based Cross-site Scripting XSS condition. This allows for the injection of...

6.5CVSS6.3AI score0.0013EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 4:32 a.m.7 views

CVE-2023-5707

The SEO Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'slider' shortcode and post meta in all versions up to, and including, 1.1.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS5.8AI score0.00532EPSS
Exploits1References1
NVD
NVD
added 2023/11/03 1:15 p.m.17 views

CVE-2023-5707

The SEO Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'slider' shortcode and post meta in all versions up to, and including, 1.1.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS5.7AI score0.00532EPSS
Exploits1References4
OSV
OSV
added 2023/11/03 1:15 p.m.3 views

CVE-2023-5707

The SEO Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'slider' shortcode and post meta in all versions up to, and including, 1.1.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

5.4CVSS6.7AI score
Exploits0References4
Prion
Prion
added 2023/11/03 1:15 p.m.16 views

Cross site scripting

The SEO Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'slider' shortcode and post meta in all versions up to, and including, 1.1.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

4.9CVSS5.6AI score0.00532EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2023/11/03 12:31 p.m.22 views

CVE-2023-5707 SEO Slider <= 1.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

The SEO Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'slider' shortcode and post meta in all versions up to, and including, 1.1.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS5.8AI score0.00532EPSS
Exploits1References4
CVE
CVE
added 2023/11/03 12:31 p.m.92 views

CVE-2023-5707

CVE-2023-5707 affects the WordPress SEO Slider plugin. Affected versions are all up to and including 1.1.0, where stored XSS is possible via the plugin’s slider shortcode and post meta due to insufficient input sanitization and output escaping (requires authentication level of contributor+). Word...

6.4CVSS5.2AI score0.00532EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2023/11/03 12:0 a.m.3 views

WordPress Plugin SEO Slider Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress Plugin SEO Slider 1.1.0 and...

6.4CVSS6.1AI score0.00532EPSS
Exploits1References5
Patchstack
Patchstack
added 2023/11/03 12:0 a.m.10 views

WordPress SEO Slider Plugin <= 1.1.0 is vulnerable to Cross Site Scripting (XSS)

Software SEO Slider Type Plugin Vulnerable versions = 1.1.0 Fixed in 1.1.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5707 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 17821e38b317 Credits Lana Codes Required privilege...

6.4CVSS5.7AI score0.00532EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder