Prime Slider Security Vulnerabilities and Issues — Prime Slider CVE List

Lucene search

BdthemesPrime Slider

9 matches found

CVE•added 2024/05/23 11:15 a.m.•101 views

CVE-2024-3997

The Prime Slider – Addons For Elementor (Revolution of a slider, Hero Slider, Ecommerce Slider) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Pagepiling widget in all versions up to, and including, 3.14.1 due to insufficient input sanitization and output escapin...

6.4CVSS5.9AI score0.00145EPSS

CVE•added 2024/03/07 7:15 a.m.•52 views

CVE-2024-1506

The Prime Slider – Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title_tags' attribute of the Fiestar widget in all versions up to, and including, 3.13.1 due to insufficient input sanitization and output escaping. This makes it possible for authenti...

6.4CVSS6.1AI score0.00124EPSS

CVE•added 2024/03/27 12:15 p.m.•43 views

CVE-2024-30186

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BdThemes Prime Slider – Addons For Elementor allows Stored XSS.This issue affects Prime Slider – Addons For Elementor: from n/a through 3.13.1.

6.5CVSS6.7AI score0.00133EPSS

CVE•added 2024/11/07 1:15 p.m.•39 views

CVE-2024-8442

The Prime Slider – Addons For Elementor (Revolution of a slider, Hero Slider, Ecommerce Slider) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Blog widget in all versions up to, and including, 3.15.18 due to insufficient input sanitization and output escaping on ...

6.4CVSS5.7AI score0.00046EPSS

CVE•added 2025/01/23 11:15 a.m.•36 views

CVE-2024-12043

The Prime Slider – Addons For Elementor (Revolution of a slider, Hero Slider, Post Slider and Ecommerce Slider) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'social_link_title' parameter of the 'blog' widget in all versions up to, and including, 3.16.5 due to insufficie...

6.4CVSS5.8AI score0.00026EPSS

CVE•added 2024/06/07 5:15 a.m.•35 views

CVE-2024-5640

The Prime Slider – Addons For Elementor (Revolution of a slider, Hero Slider, Ecommerce Slider) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ attribute within the Pacific widget in all versions up to, and including, 3.14.7 due to insufficient input sanitization and ...

6.4CVSS5.5AI score0.0034EPSS

CVE•added 2024/03/13 2:15 p.m.•29 views

CVE-2024-1507

The Prime Slider – Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title_tags' attribute of the Rubix widget in all versions up to, and including, 3.13.2 due to insufficient input sanitization and output escaping. This makes it possible for authentica...

6.4CVSS5.8AI score0.00124EPSS

CVE•added 2024/03/13 2:15 p.m.•28 views

CVE-2024-1508

The Prime Slider – Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'settings['title_tags']' attribute of the Mercury widget in all versions up to, and including, 3.13.2 due to insufficient input sanitization and output escaping. This makes it possible ...

6.4CVSS5.8AI score0.00124EPSS

CVE•added 2024/05/14 3:43 p.m.•25 views

CVE-2024-4339

The Prime Slider – Addons For Elementor (Revolution of a slider, Hero Slider, Ecommerce Slider) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the General widget in all versions up to, and including, 3.14.3 due to insufficient input sanitization and output escaping. This make...

6.4CVSS5.7AI score0.00128EPSS