4 matches found
CVE-2024-35769
CVE-2024-35769 is a stored XSS vulnerability affecting the WordPress plugin Slideshow SE. The connected Wordfence vulnerability data indicates Slideshow SE versions up to 2.5.20 (likely including 2.5.17) are impacted with authenticated (Author+) access. The description in the Initial document not...
CVE-2022-41554
CVE-2022-41554 affects the WordPress plugin John West Slideshow SE up to version 2.5.5, with a stored XSS vulnerability. The documents consistently identify the affected product and vulnerability class; no explicit root cause or affected file/function is provided beyond the general XSS descriptio...
CVE-2022-43461
CVE-2022-43461 is a stored XSS flaw affecting the WordPress Slideshow SE plugin running versions
CVE-2024-35778
CVE-2024-35778 corresponds to a Path Traversal (Local File Inclusion) affecting Slideshow SE for WordPress, through version 2.5.17. The vulnerability is described as an Authenticated (Author+) LFI with path traversal in PHP. The Wordfence vulnerability listing for Slideshow SE indicates the issue...