Lucene search
+L

367 matches found

Patchstack
Patchstack
added 2025/04/03 12:0 a.m.7 views

WordPress Slide Theme <= 1.7.5 is vulnerable to Arbitrary File Upload

Software Slide Type Theme Vulnerable versions = 1.7.5 Fixed in N/A OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2025-30996 Patch priority Medium CVSS severity Medium 9.9 Developer Claim ownership PSID 93c6f7b48621 Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity...

6.2AI score0.00437EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/04/01 7:37 a.m.7 views

WordPress Slide <= 1.7.5 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Tran Nguyen Bao KhanhVCI - VNPT in WordPress Theme Slide versions = 1.7.5...

6.2AI score0.00146EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/04/01 12:0 a.m.7 views

WordPress Slide Theme <= 1.7.5 is vulnerable to Cross Site Scripting (XSS)

Software Slide Type Theme Vulnerable versions = 1.7.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2025-31013 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 185dcd16a69e Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber Immuni...

6AI score0.00146EPSS
Exploits0References1Affected Software1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/03/28 1:6 p.m.5 views

Malicious code in slide-tc (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSV
OSV
added 2025/03/28 1:6 p.m.4 views

MAL-2025-2998 Malicious code in slide-tc (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/09 10:22 a.m.7 views

CVE-2025-25120

Missing Authorization vulnerability in Melodic Media Slide Banners slide-banners allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Slide Banners: from n/a through = 1.3...

4.3CVSS7.2AI score0.00305EPSS
Exploits0References1
NVD
NVD
added 2025/02/07 10:15 a.m.16 views

CVE-2025-25120

Missing Authorization vulnerability in Melodic Media Slide Banners slide-banners allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Slide Banners: from n/a through = 1.3...

4.3CVSS0.00305EPSS
Exploits0References1
CVE
CVE
added 2025/02/07 10:11 a.m.63 views

CVE-2025-25120

CVE-2025-25120 describes Missing Authorization (Broken Access Control) in WordPress Slide Banners plugin

4.3CVSS7.2AI score0.00305EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/07 10:11 a.m.18 views

CVE-2025-25120 WordPress Slide Banners plugin <= 1.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Melodic Media Slide Banners slide-banners allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Slide Banners: from n/a through = 1.3...

4.3CVSS0.00305EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/07 10:11 a.m.12 views

CVE-2025-25120 WordPress Slide Banners plugin <= 1.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Melodic Media Slide Banners allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Slide Banners: from n/a through 1.3...

4.3CVSS4.7AI score0.00305EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/07 12:0 a.m.6 views

WordPress plugin Slide Banners 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

4.3CVSS8.8AI score0.00305EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 3:24 a.m.5 views

CVE-2024-51690

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in neelam.samariya Wp Slide Categorywise wp-slide-categorywise allows Reflected XSS.This issue affects Wp Slide Categorywise: from n/a through = 1.1...

7.1CVSS7.2AI score0.00259EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/02/03 4:12 p.m.5 views

WordPress Slide Banners plugin <= 1.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Slide Banners versions = 1.3...

4.3CVSS7AI score0.00305EPSS
Exploits0Affected Software1
OSV
OSV
added 2025/01/07 6:15 a.m.3 views

CVE-2024-12073

The Meteor Slides plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'slideurlvalue' parameter in all versions up to, and including, 1.5.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level...

5.4CVSS7.4AI score0.00245EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/11/09 12:52 p.m.22 views

CVE-2024-51690 WordPress Wp Slide Categorywise plugin <= 1.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in neelam.samariya Wp Slide Categorywise wp-slide-categorywise allows Reflected XSS.This issue affects Wp Slide Categorywise: from n/a through = 1.1...

7.1CVSS0.00259EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/09 12:52 p.m.9 views

CVE-2024-51690 WordPress Wp Slide Categorywise plugin <= 1.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in neelam.samariya Wp Slide Categorywise wp-slide-categorywise allows Reflected XSS.This issue affects Wp Slide Categorywise: from n/a through = 1.1...

7.1CVSS7.2AI score0.00259EPSS
Exploits0References1
CVE
CVE
added 2024/11/09 12:52 p.m.39 views

CVE-2024-51690

CVE-2024-51690 is a reflected XSS vulnerability in the WordPress plugin WP Slide Categorywise. The issue arises from improper neutralization of input during web page generation, enabling reflected XSS. It affects WP Slide Categorywise versions up to 1.1. The CVSS v3.1 vector is AV:N/AC:L/PR:N/UI:...

7.1CVSS7.2AI score0.00259EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/09 12:0 a.m.3 views

WordPress plugin Wp Slide Categorywise 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS7.7AI score0.00259EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/09 12:0 a.m.4 views

PT-2024-34837 · WordPress · Wp Slide Categorywise

Name of the Vulnerable Software and Affected Versions: Wp Slide Categorywise versions 1.1 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Reflected XSS attacks. Recommendations: F...

7.1CVSS6.3AI score0.00259EPSS
Exploits0References5
Patchstack
Patchstack
added 2024/11/04 8:36 a.m.6 views

WordPress Wp Slide Categorywise plugin <= 1.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Wp Slide Categorywise versions = 1.1...

7.1CVSS6.1AI score0.00259EPSS
Exploits0Affected Software1
Rows per page
Query Builder