| CVE-2024-37955 | WordPress GutSlider – All in One Block Slider plugin <= 2.7.3 - Cross Site Scripting (XSS) vulnerability | Zakaria Binsaifullah | GutSlider – All in One Block Slider | Medium | 6.5 | 2024-07-20 08:20:02 | Deep Dive |
| CVE-2024-38686 | WordPress FancyPost plugin <= 5.3.1 - Cross Site Scripting (XSS) vulnerability | Pluginic | FancyPost – Best Ultimate Post Block, Post Grid, Layouts, Carousel, Slider For Gutenberg & Elementor | Medium | 6.5 | 2024-07-20 07:40:06 | Deep Dive |
| CVE-2024-38750 | WordPress Advanced post slider plugin <= 3.0.0 - Cross Site Scripting (XSS) vulnerability | digontoahsan | Advanced post slider | Medium | 6.5 | 2024-07-20 07:13:53 | Deep Dive |
| CVE-2024-6026 | Slider by 10Web < 1.2.56 - Editor+ Stored XSS | Unknown | Slider by 10Web | - | - | 2024-07-11 06:00:04 | Deep Dive |
| CVE-2024-5881 | Webico Slider Flatsome Addons <= 2.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via wbc_image Shortcode | tranbinhcse | Webico Slider Flatsome Addons | Medium | 6.4 | 2024-07-09 07:38:46 | Deep Dive |
| CVE-2024-5260 | Sina Extension for Elementor <= 3.5.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via read_more_text Parameter | shaonsina | Sina Extension for Elementor | Medium | 6.4 | 2024-07-02 08:32:52 | Deep Dive |
| CVE-2024-5662 | Ultimate Post Kit Addons For Elementor – (Post Grid, Post Carousel, Post Slider, Category List, Post Tabs, Timeline, Post Ticker, Tag Cloud) <= 3.11.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Social Count (Static) Widget | bdthemes | Ultimate Post Kit Addons for Elementor | Medium | 6.4 | 2024-06-28 08:33:29 | Deep Dive |
| CVE-2024-5729 | Simple AL Slider <= 1.2.10 - Reflected XSS | Unknown | Simple AL Slider | - | - | 2024-06-28 06:00:05 | Deep Dive |
| CVE-2024-35762 | WordPress Serious Slider plugin <= 1.2.4 - Cross Site Scripting (XSS) vulnerability | Cryout Creations | Serious Slider | Medium | 6.5 | 2024-06-21 12:35:56 | Deep Dive |
| CVE-2024-37222 | WordPress Master Slider plugin <= 3.10.0 - Reflected Cross Site Scripting (XSS) vulnerability | Averta | Master Slider | High | 7.1 | 2024-06-20 14:12:34 | Deep Dive |
| CVE-2024-5036 | Sina Extension for Elementor (Slider, Gallery, Form, Modal, Data Table, Tab, Particle, Free Elementor Widgets & Elementor Templates) <= 3.5.4 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting | shaonsina | Sina Extension for Elementor | Medium | 6.4 | 2024-06-20 11:06:02 | Deep Dive |
| CVE-2024-4390 | Depicter <= 3.0.2 - Authenticated (Contributor+) Arbitrary Nonce Generation | averta | Depicter — Popup & Slider Builder | Medium | 6.5 | 2024-06-20 03:37:23 | Deep Dive |
| CVE-2024-34444 | WordPress Slider Revolution plugin < 6.7.0 - Unauthenticated Broken Access Control vulnerability | ThemePunch OHG | Slider Revolution | High | 7.1 | 2024-06-19 14:57:09 | Deep Dive |
| CVE-2024-34443 | WordPress Slider Revolution plugin < 6.7.11 - Cross Site Scripting (XSS) vulnerability | ThemePunch OHG | Slider Revolution | Medium | 5.9 | 2024-06-19 14:53:55 | Deep Dive |
| CVE-2023-50900 | WordPress Master Slider plugin <= 3.9.10 - Cross Site Request Forgery (CSRF) vulnerability | Averta | Master Slider | Medium | 4.3 | 2024-06-19 10:00:55 | Deep Dive |
| CVE-2024-3894 | Photo Gallery, Images, Slider in Rbs Image Gallery <= 3.2.19 - Authenticated (Author+) Stored Cross-Site Scripting via Image Title | robosoft | Robo Gallery – Photo & Image Slider | Medium | 6.4 | 2024-06-19 06:55:46 | Deep Dive |
| CVE-2024-5343 | Photo Gallery, Images, Slider in Rbs Image Gallery <= 3.2.19 - Cross-Site Request Forgery to Post Creation and Limited Data Loss | robosoft | Robo Gallery – Photo & Image Slider | High | 8.8 | 2024-06-19 05:37:43 | Deep Dive |
| CVE-2024-5649 | Universal Slider <= 1.6.5 - Authenticated (Contributor+) PHP Object Injection | webhuntinfotech | Universal Slider | Medium | 5.4 | 2024-06-19 03:12:32 | Deep Dive |
| CVE-2024-4375 | Master Slider – Responsive Touch Slider <= 3.9.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via ms_layer Shortcode | averta | Master Slider – Responsive Touch Slider | Medium | 6.4 | 2024-06-18 02:37:11 | Deep Dive |
| CVE-2023-51519 | WordPress Slider by Soliloquy – Responsive Image Slider for WordPress plugin <= 2.7.2 - Broken Access Control vulnerability | Soliloquy Team | Slider by Soliloquy | Medium | 4.3 | 2024-06-11 15:50:36 | Deep Dive |