8 matches found
CVE-2024-31353
CVE-2024-31353 : Affects Slideshow Gallery LITE (WordPress plugin) ≤ 1.7.8. The Wordfence entry confirms an unauthenticated information exposure vulnerability (insertion of sensitive information into log files). No exploitation details are provided in the connected docs, and the patch status for ...
CVE-2021-24882
The CVE-2021-24882 entry describes a stored Cross-Site Scripting (XSS) vulnerability in the WordPress Slideshow Gallery plugin prior to 1.7.4. The root cause is the plugin’s failure to sanitize and escape the Slide Title, Slide Description, and Gallery Title fields, enabling attacker-controlled i...
CVE-2018-18017
CVE-2018-18017 applies to the Tribulant Slideshow Gallery plugin for WordPress (version 1.6.8). The vulnerability is a reflected XSS in the admin interface, exploitable via the wp-admin/admin.php?page=slideshow-galleries&method=save with Gallery[id] or Gallery[title] parameters. Public sources (N...
CVE-2018-18018
The CVE concerns the Tribulant Slideshow Gallery WordPress plugin (v1.6.8) where SQL injection is possible via wp-admin/admin.php?page=slideshow-galleries&method=save with Gallery[id] or Gallery[title]. The issue comes from unsafely handled input in the plugin’s save endpoint, enabling confidenti...
CVE-2023-28491
CVE-2023-28491 describes an SQL Injection in the WordPress plugin Slideshow Gallery LITE (Tribulant Slideshow Gallery LITE) for versions
CVE-2018-17946
Affected product: Tribulant Slideshow Gallery plugin for WordPress (before 1.6.6.1). Vulnerability: XSS via parameters id, method, Gallerymessage, Galleryerror, or Galleryupdated. Impact: cross-site scripting exposure; CVSS indicates MEDIUM. Root cause: input handling in the plugin allows script ...
CVE-2018-18019
Summary (CVE-2018-18019) : The Tribulant Slideshow Gallery WordPress plugin is affected up to version 1.6.8. The vulnerability is a cross-site scripting (XSS) flaw caused by parameter handling in the admin flow: Slide[title], Slide[media_file], or Slide[image_url] passed through wp-admin/admin.ph...
CVE-2023-28497
CVE-2023-28497 affects the WordPress plugin Tribulant Slideshow Gallery LITE (versions