Associated Vulnerability

CVE ID	Title	Vendor	Product	Severity	CVSS Score	Published At	AI Analysis
CVE-2024-11770	Post Carousel & Slider <= 1.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting	tarakpatel18	Post Carousel & Slider	Medium	6.4	2024-12-14 04:23:42	Deep Dive
CVE-2022-46846	WordPress Trending/Popular Post Slider and Widget plugin <= 1.5.7 - Broken Access Control vulnerability	WP OnlineSupport, Essential Plugin	Trending/Popular Post Slider and Widget	Medium	5.3	2024-12-13 14:22:09	Deep Dive
CVE-2024-4633	Slider & Popup Builder by Depicter – Add Image Slider, Carousel Slider, Exit Intent Popup, Popup Modal, Coupon Popup, Post Slider Carousel <= 3.2.1- Authenticated (Author+) Stored Cross-Site Scripting	averta	Depicter — Popup & Slider Builder	Medium	6.4	2024-12-06 13:45:20	Deep Dive
CVE-2024-5020	Multiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via FancyBox JavaScript Library	extendthemes	Colibri Page Builder	Medium	6.4	2024-12-04 08:22:47	Deep Dive
CVE-2024-53749	WordPress Post Carousel Slider for Elementor plugin <= 1.5.0 - Cross Site Scripting (XSS) vulnerability	Plugin Devs	Post Carousel Slider for Elementor	Medium	6.5	2024-12-01 21:21:51	Deep Dive
CVE-2022-4974	Freemius SDK <= 2.4.2 - Missing Authorization Checks	dashlabsltd	YASR – Yet Another Star Rating Plugin for WordPress	Medium	6.3	2024-10-16 06:43:30	Deep Dive
CVE-2024-4389	Slider & Popup Builder by Depicter – Add Image Slider, Carousel Slider, Exit Intent Popup, Popup Modal, Coupon Popup, Post Slider Carousel <= 3.1.1 - Authenticated (Contributor+) Arbitrary File Upload	averta	Depicter — Popup & Slider Builder	High	8.8	2024-08-14 08:29:44	Deep Dive
CVE-2024-38686	WordPress FancyPost plugin <= 5.3.1 - Cross Site Scripting (XSS) vulnerability	Pluginic	FancyPost – Best Ultimate Post Block, Post Grid, Layouts, Carousel, Slider For Gutenberg & Elementor	Medium	6.5	2024-07-20 07:40:06	Deep Dive
CVE-2024-38750	WordPress Advanced post slider plugin <= 3.0.0 - Cross Site Scripting (XSS) vulnerability	digontoahsan	Advanced post slider	Medium	6.5	2024-07-20 07:13:53	Deep Dive
CVE-2024-5662	Ultimate Post Kit Addons For Elementor – (Post Grid, Post Carousel, Post Slider, Category List, Post Tabs, Timeline, Post Ticker, Tag Cloud) <= 3.11.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Social Count (Static) Widget	bdthemes	Ultimate Post Kit Addons for Elementor	Medium	6.4	2024-06-28 08:33:29	Deep Dive
CVE-2024-4390	Depicter <= 3.0.2 - Authenticated (Contributor+) Arbitrary Nonce Generation	averta	Depicter — Popup & Slider Builder	Medium	6.5	2024-06-20 03:37:23	Deep Dive
CVE-2022-40975	WordPress Post Slider plugin <= 1.6.7 - Broken Access Control vulnerability	Aazztech	Post Slider	Medium	5.4	2024-04-26 13:36:03	Deep Dive
CVE-2024-32801	WordPress Widget Post Slider plugin <= 1.3.5 - Cross Site Scripting (XSS) vulnerability	ShapedPlugin	Widget Post Slider	Medium	5.9	2024-04-24 08:44:16	Deep Dive
CVE-2024-3020	Carousel, Slider, Gallery by WP Carousel – Image Carousel & Photo Gallery, Post Carousel & Post Grid, Product Carousel & Product Grid for WooCommerce <= 2.6.3 - Authenticated (Admin+) PHP Object Injection	shapedplugin	Carousel, Slider, Photo Gallery with Lightbox, Video Slider, by WP Carousel	High	7.2	2024-04-10 04:30:22	Deep Dive
CVE-2024-2949	Carousel, Slider, Gallery by WP Carousel – Image Carousel & Photo Gallery, Post Carousel & Post Grid, Product Carousel & Product Grid for WooCommerce <= 2.6.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'sp_wp_carousel_shortcode'	shapedplugin	Carousel, Slider, Photo Gallery with Lightbox, Video Slider, by WP Carousel	Medium	6.4	2024-04-06 06:47:19	Deep Dive
CVE-2024-29925	WordPress Post Grid, Slider & Carousel Ultimate plugin <= 1.6.6 - Cross Site Scripting (XSS) vulnerability	wpWax	Post Grid, Slider & Carousel Ultimate	Medium	6.5	2024-03-27 07:26:10	Deep Dive
CVE-2024-2006	Post Grid, Slider & Carousel Ultimate – with Shortcode, Gutenberg Block & Elementor Widget <= 1.6.7 - Authenticated (Contributor+) PHP Object Injection in outpost_shortcode_metabox_markup	wpwax	Post Grid, Slider & Carousel Ultimate – with Shortcode, Gutenberg Block & Elementor Widget	High	8.8	2024-03-13 15:27:04	Deep Dive
CVE-2024-0612	Content Views <= 3.6.2 - Authenticated(Administrator+) Stored Cross-Site Scripting via settings	pt-guy	Content Views – Post Grid & Filter, Recent Posts, Category Posts … (Shortcode, Gutenberg Blocks, and Widgets for Elementor)	Medium	4.4	2024-02-05 21:21:57	Deep Dive
CVE-2023-6493	Depicter Slider – Responsive Image Slider, Video Slider & Post Slider <= 2.0.6 - Cross-Site Request Forgery via save	averta	Depicter — Popup & Slider Builder	Medium	4.3	2024-01-05 02:02:21	Deep Dive
CVE-2023-5815	News & Blog Designer Pack – WordPress Blog Plugin <= 3.4.1 - Unauthenticated Remote Code Execution via Local File Inclusion	infornweb	Blog Designer Pack – Blog, Post Grid, Post Slider, Post Carousel, Category Post, News	High	8.1	2023-11-22 15:33:22	Deep Dive

Support Us — Your donation helps us keep running

Associated Vulnerability