CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

97 matches found

CVE-2026-49777

Improper Validation of Specified Quantity in Input vulnerability in ShapedPlugin, LLC Product Slider Pro for WooCommerce allows Malicious Software Implanted. This issue affects Product Slider Pro for WooCommerce: from n/a before 3.5.3. No patched version is available - the vendor has applied a fi...

10CVSS0.00063EPSS

Exploits0References1

EUVD•added yesterday•6 views

EUVD-2026-34792

10CVSS5.5AI score0.00063EPSS

Exploits0References1

Cvelist•added yesterday•17 views

CVE-2026-49777 WordPress Product Slider Pro for WooCommerce plugin < 3.5.3 - Backdoor vulnerability

10CVSS0.00063EPSS

Exploits0References1

ATTACKERKB•added yesterday•5 views

CVE-2026-49777

10CVSS5.5AI score0.00063EPSS

Exploits0References2

CVE•added yesterday•11 views

CVE-2026-49777

CVE-2026-49777 affects the WordPress plugin Product Slider Pro for WooCommerce by ShapedPlugin, LLC. The issue is described as improper validation of a specified quantity in input, enabling potential malicious software implantation. Affected product/version: Product Slider Pro for WooCommerce pri...

10CVSS5.5AI score0.00063EPSS

Exploits0References1

Positive Technologies•added yesterday•5 views

PT-2026-46911

10CVSS5.5AI score0.00063EPSS

Exploits0References2

The Hacker News•added 2026/04/10 6:28 a.m.•2 views

Backdoored Smart Slider 3 Pro Update Distributed via Compromised Nextend Servers

Unknown threat actors have hijacked the update system for the Smart Slider 3 Pro plugin for WordPress and Joomla to push a poisoned version containing a backdoor. The incident impacts Smart Slider 3 Pro version 3.5.1.35 for WordPress, per WordPress security company Patchstack. Smart Slider 3 is a...

6.8AI score

Exploits0

NVD•added 2026/04/09 11:17 p.m.•2 views

CVE-2026-34424

Smart Slider 3 Pro version 3.5.1.35 for WordPress and Joomla contains a multi-stage remote access toolkit injected through a compromised update system that allows unauthenticated attackers to execute arbitrary code and commands. Attackers can trigger pre-authentication remote shell execution via...

9.8CVSS0.00346EPSS

Exploits0References5

Vulnrichment•added 2026/04/09 10:59 p.m.•1 views

CVE-2026-34424 Smart Slider 3 Pro 3.5.1.35 Supply Chain Attack Remote Access Toolkit

9.8CVSS6.3AI score0.00346EPSS

Exploits0References5

CNNVD•added 2026/04/09 12:0 a.m.•3 views

WordPress plugin Smart Slider 3 Pro 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

9.8CVSS6.2AI score0.00346EPSS

Exploits0References5

VulnCheck KEV•added 2026/04/07 12:0 a.m.•187 views

VulnCheck KEV: CVE-2026-34424

9.8CVSS6.3AI score0.00346EPSS

In wildExploits0References6

RedhatCVE•added 2026/01/23 9:16 p.m.•4 views

CVE-2025-49066

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup Accordion Slider PRO accordionsliderpro allows Reflected XSS.This issue affects Accordion Slider PRO: from n/a through = 1.2...

7.1CVSS5.4AI score0.00064EPSS

Exploits0References1

NVD•added 2026/01/22 5:15 p.m.•2 views

CVE-2025-49066

7.1CVSS0.00064EPSS

Exploits0References1

CVE•added 2026/01/22 4:51 p.m.•3 views

CVE-2025-49066

CVE-2025-49066 is a Reflected XSS in the WordPress plugin Accordion Slider PRO (accordion_slider_pro) affecting versions up to 1.2. The root cause is improper input neutralization during web page generation. The connected sources confirm the vulnerability and affected range, but none provide a pu...

7.1CVSS5.4AI score0.00064EPSS

Exploits0References1

Vulnrichment•added 2026/01/22 4:51 p.m.•1 views

CVE-2025-49066 WordPress Accordion Slider PRO plugin <= 1.2 - Reflected Cross Site Scripting (XSS) vulnerability

7.1CVSS5.9AI score0.00064EPSS

Exploits0References1

Cvelist•added 2026/01/22 4:51 p.m.•16 views

CVE-2025-49066 WordPress Accordion Slider PRO plugin <= 1.2 - Reflected Cross Site Scripting (XSS) vulnerability

7.1CVSS0.00064EPSS

Exploits0References1

CNNVD•added 2026/01/22 12:0 a.m.•2 views

WordPress plugin accordion_slider_pro has a cross-site scripting vulnerability

7.1CVSS5.7AI score0.00064EPSS

Exploits0References1

Positive Technologies•added 2026/01/22 12:0 a.m.•3 views

PT-2026-3973

Name of the Vulnerable Software and Affected Versions Accordion Slider PRO versions through 1.2 Description The software contains a flaw related to improper handling of user-supplied data during web page creation, which can lead to Reflected Cross-site Scripting XSS. This means that malicious cod...

5.5AI score0.00064EPSS

Exploits0References3

Patchstack•added 2026/01/12 12:48 p.m.•2 views

WordPress Accordion Slider PRO plugin <= 1.2 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Accordion Slider PRO versions = 1.2...

6.1CVSS6.1AI score0.00064EPSS

Exploits0Affected Software1

Patchstack•added 2025/12/14 5:51 a.m.•3 views

WordPress Accordion Slider PRO plugin <= 1.2 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin Accordion Slider PRO versions = 1.2...

9.8CVSS8.1AI score0.00034EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by