Meteor Slides Security Vulnerabilities and Issues — Meteor Slides CVE List

Lucene search

Meteor Slides ProjectMeteor Slides

3 matches found

CVE•added 2023/01/16 4:15 p.m.•83 views

CVE-2022-4486

The Meteor Slides WordPress plugin before 1.5.7 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege ...

5.4CVSS5.3AI score0.00144EPSS

CVE•added 2025/01/07 6:15 a.m.•38 views

CVE-2024-12073

The Meteor Slides plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'slide_url_value' parameter in all versions up to, and including, 1.5.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level ...

6.4CVSS5.8AI score0.00026EPSS

CVE•added 2024/12/02 2:15 p.m.•30 views

CVE-2024-52493

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Josh Leuze Meteor Slides allows Stored XSS.This issue affects Meteor Slides: from n/a through 1.5.7.

5.9CVSS5.8AI score0.00043EPSS