Lucene search
K
TribulantSlideshow Gallery

8 matches found

CVE
CVE
added 2024/04/10 3:30 p.m.69 views

CVE-2024-31353

CVE-2024-31353 : Affects Slideshow Gallery LITE (WordPress plugin) ≤ 1.7.8. The Wordfence entry confirms an unauthenticated information exposure vulnerability (insertion of sensitive information into log files). No exploitation details are provided in the connected docs, and the patch status for ...

5.3CVSS8.6AI score0.0047EPSS
CVE
CVE
added 2021/11/23 7:16 p.m.51 views

CVE-2021-24882

The CVE-2021-24882 entry describes a stored Cross-Site Scripting (XSS) vulnerability in the WordPress Slideshow Gallery plugin prior to 1.7.4. The root cause is the plugin’s failure to sanitize and escape the Slide Title, Slide Description, and Gallery Title fields, enabling attacker-controlled i...

4.8CVSS4.8AI score0.00598EPSS
Web
CVE
CVE
added 2019/04/15 8:24 p.m.49 views

CVE-2018-18017

CVE-2018-18017 applies to the Tribulant Slideshow Gallery plugin for WordPress (version 1.6.8). The vulnerability is a reflected XSS in the admin interface, exploitable via the wp-admin/admin.php?page=slideshow-galleries&method=save with Gallery[id] or Gallery[title] parameters. Public sources (N...

6.1CVSS6.6AI score0.01021EPSS
Web
CVE
CVE
added 2019/04/15 8:27 p.m.48 views

CVE-2018-18018

The CVE concerns the Tribulant Slideshow Gallery WordPress plugin (v1.6.8) where SQL injection is possible via wp-admin/admin.php?page=slideshow-galleries&method=save with Gallery[id] or Gallery[title]. The issue comes from unsafely handled input in the plugin’s save endpoint, enabling confidenti...

9.8CVSS9.9AI score0.02193EPSS
Web
CVE
CVE
added 2023/12/20 5:23 p.m.47 views

CVE-2023-28491

CVE-2023-28491 describes an SQL Injection in the WordPress plugin Slideshow Gallery LITE (Tribulant Slideshow Gallery LITE) for versions

7.2CVSS7.8AI score0.00762EPSS
CVE
CVE
added 2018/10/03 8:0 a.m.46 views

CVE-2018-17946

Affected product: Tribulant Slideshow Gallery plugin for WordPress (before 1.6.6.1). Vulnerability: XSS via parameters id, method, Gallerymessage, Galleryerror, or Galleryupdated. Impact: cross-site scripting exposure; CVSS indicates MEDIUM. Root cause: input handling in the plugin allows script ...

6.1CVSS6AI score0.00844EPSS
Web
CVE
CVE
added 2019/04/15 8:29 p.m.46 views

CVE-2018-18019

Summary (CVE-2018-18019) : The Tribulant Slideshow Gallery WordPress plugin is affected up to version 1.6.8. The vulnerability is a cross-site scripting (XSS) flaw caused by parameter handling in the admin flow: Slide[title], Slide[media_file], or Slide[image_url] passed through wp-admin/admin.ph...

6.1CVSS6.6AI score0.01021EPSS
Web
CVE
CVE
added 2023/11/12 10:1 p.m.40 views

CVE-2023-28497

CVE-2023-28497 affects the WordPress plugin Tribulant Slideshow Gallery LITE (versions

8.8CVSS7.2AI score0.00284EPSS