Image Hover Effects Ultimate Security Vulnerabilities and Issues — Image Hover Effects Ultimate CVE List

Lucene search

OxilabImage Hover Effects Ultimate

4 matches found

CVE•added 2022/09/06 6:15 p.m.•46 views

CVE-2022-2935

The Image Hover Effects Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Media Image URL value that can be added to an Image Hover in versions up to, and including, 9.7.3 due to insufficient input sanitization and output escaping. This makes it possible for authent...

6.4CVSS5.2AI score0.00101EPSS

CVE•added 2022/09/06 6:15 p.m.•45 views

CVE-2022-2936

The Image Hover Effects Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Video Link values that can be added to an Image Hover in versions up to, and including, 9.7.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated a...

6.4CVSS5.2AI score0.00101EPSS

CVE•added 2022/09/23 2:15 p.m.•43 views

CVE-2022-2937

The Image Hover Effects Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Title & Description values that can be added to an Image Hover in versions up to, and including, 9.7.3 due to insufficient input sanitization and output escaping. This makes it possible for au...

6.4CVSS5.2AI score0.00137EPSS

CVE•added 2022/01/24 8:15 a.m.•33 views

CVE-2021-25031

The Image Hover Effects Ultimate (Image Gallery, Effects, Lightbox, Comparison or Magnifier) WordPress plugin before 9.7.1 does not escape the effects parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting

6.1CVSS6.1AI score0.0021EPSS