| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-3285 | Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows <= 3.70.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via metaslider Shortcode | metaslider | Slider, Gallery, and Carousel by MetaSlider – Image Slider, Video Slider | Medium | 6.4 | 2024-04-11 07:31:36 | Deep Dive |
| CVE-2024-1664 | Responsive Gallery Grid < 2.3.11 - Admin+ Stored XSS | Unknown | Responsive Gallery Grid | - | - | 2024-04-09 05:00:02 | Deep Dive |
| CVE-2024-30550 | WordPress Gallery – Image and Video Gallery with Thumbnails plugin <= 2.0.3 - Reflected Cross Site Scripting (XSS) vulnerability | wpdevart | Responsive Image Gallery, Gallery Album | High | 7.1 | 2024-03-31 19:57:44 | Deep Dive |
| CVE-2024-30552 | WordPress Responsive flipbook plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability | wppdf.org | Responsive flipbook | Medium | 6.5 | 2024-03-31 19:53:39 | Deep Dive |
| CVE-2024-31120 | WordPress Gallery – Image and Video Gallery with Thumbnails plugin <= 2.0.3 - Cross Site Scripting (XSS) vulnerability | wpdevart | Responsive Image Gallery, Gallery Album | Medium | 6.5 | 2024-03-31 18:48:31 | Deep Dive |
| CVE-2024-30447 | WordPress Creative Image Slider plugin <= 2.1.3 - Cross Site Scripting (XSS) vulnerability | Creative Solutions | Creative Image Slider – Responsive Slider Plugin | High | 7.1 | 2024-03-29 16:51:19 | Deep Dive |
| CVE-2024-30497 | WordPress WP Responsive Tabs horizontal vertical and accordion Tabs plugin <= 1.1.17 - SQL Injection vulnerability | I Thirteen Web Solution | WP Responsive Tabs horizontal vertical and accordion Tabs | High | 8.5 | 2024-03-29 13:59:25 | Deep Dive |
| CVE-2024-2848 | Responsive <= 5.0.2 - Missing Authorization to HTML Injection | cyberchimps | Responsive | High | 7.5 | 2024-03-29 11:02:03 | Deep Dive |
| CVE-2024-1858 | Lightbox slider – Responsive Lightbox Gallery <= 1.9.9 - Authenticated (Contributor+) PHP Object Injection | weblizar | Lightbox slider – Responsive Lightbox Gallery | Medium | 5.4 | 2024-03-29 06:43:59 | Deep Dive |
| CVE-2024-27988 | WordPress WEN Responsive Columns plugin <= 1.3.2 - Cross Site Scripting (XSS) vulnerability | WEN Themes | WEN Responsive Columns | Medium | 6.5 | 2024-03-21 15:17:04 | Deep Dive |
| CVE-2024-27989 | WordPress WP Responsive Tabs horizontal vertical and accordion Tabs plugin <= 1.1.17 - Cross Site Scripting (XSS) vulnerability | I Thirteen Web Solution | WP Responsive Tabs horizontal vertical and accordion Tabs | Medium | 6.5 | 2024-03-21 15:14:51 | Deep Dive |
| CVE-2024-1333 | Responsive Pricing Table < 5.1.11 - Author+ Stored XSS | Unknown | Responsive Pricing Table | 中危 | - | 2024-03-18 15:15:26 | Deep Dive |
| CVE-2024-0611 | Master Slider – Responsive Touch Slider <= 3.9.9 - Authenticated(Editor+) Stored Cross-Site Scripting via slider callback | averta | Master Slider – Responsive Touch Slider | Medium | 4.4 | 2024-03-02 11:15:35 | Deep Dive |
| CVE-2024-1449 | Master Slider – Responsive Touch Slider <= 3.9.10 - Authenticated (Contributor+) Stored Cross-Site Scripting | averta | Master Slider – Responsive Touch Slider | Medium | 6.4 | 2024-03-02 11:15:35 | Deep Dive |
| CVE-2023-6326 | Master Slider - Responsive Touch Slider <= 3.9.10 - Cross-Site Request Forgery via process_bulk_action | averta | Master Slider – Responsive Touch Slider | Medium | 5.4 | 2024-03-02 11:15:34 | Deep Dive |
| CVE-2024-1859 | Slider Responsive Slideshow – Image slider, Gallery slideshow <= 1.3.8 - Authenticated (Contributor+) PHP Object Injection | awordpresslife | Responsive Slideshow | High | 8.8 | 2024-03-01 06:47:51 | Deep Dive |
| CVE-2024-24802 | WordPress JTRT Responsive Tables Plugin <= 4.1.9 is vulnerable to Cross Site Request Forgery (CSRF) | John Tendik | JTRT Responsive Tables | Medium | 4.3 | 2024-02-21 07:29:14 | Deep Dive |
| CVE-2024-24926 | WordPress Brooklyn Theme <= 4.9.7.6 is vulnerable to PHP Object Injection | UnitedThemes | Brooklyn | Creative Multi-Purpose Responsive WordPress Theme | High | 7.5 | 2024-02-12 07:09:01 | Deep Dive |
| CVE-2024-24927 | WordPress Brooklyn Theme <= 4.9.7.6 is vulnerable to Cross Site Scripting (XSS) | UnitedThemes | Brooklyn | Creative Multi-Purpose Responsive WordPress Theme | High | 7.1 | 2024-02-12 06:07:09 | Deep Dive |
| CVE-2023-5235 | Ovic Responsive WPBakery < 1.2.9 - Subscriber+ Option Update | Unknown | Ovic Responsive WPBakery | - | - | 2024-01-08 19:00:36 | Deep Dive |