Skip to main content

2J Slideshow

3 CVEs product

Monthly

CVE-2023-44242 MEDIUM This Month

Auth. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS 2J Slideshow
NVD
CVSS 3.1
5.4
EPSS
0.3%
CVE-2020-36729 MEDIUM POC PATCH This Month

The 2J-SlideShow Plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the 'twoj_slideshow_setup' function called via the wp_ajax_twoj_slideshow_setup AJAX. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

WordPress Authentication Bypass 2J Slideshow
NVD
CVSS 3.1
5.4
EPSS
0.0%
CVE-2022-29426 MEDIUM This Month

Authenticated (contributor or higher user role) Reflected Cross-Site Scripting (XSS) vulnerability in 2J Slideshow Team's Slideshow, Image Slider by 2J plugin <= 1.3.54 at WordPress. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS WordPress 2J Slideshow
NVD
CVSS 3.1
5.4
EPSS
0.5%
EPSS 0% CVSS 5.4
MEDIUM This Month

Auth. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS 2J Slideshow
NVD
EPSS 0% CVSS 5.4
MEDIUM POC PATCH This Month

The 2J-SlideShow Plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the 'twoj_slideshow_setup' function called via the wp_ajax_twoj_slideshow_setup AJAX. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

WordPress Authentication Bypass 2J Slideshow
NVD
EPSS 0% CVSS 5.4
MEDIUM This Month

Authenticated (contributor or higher user role) Reflected Cross-Site Scripting (XSS) vulnerability in 2J Slideshow Team's Slideshow, Image Slider by 2J plugin <= 1.3.54 at WordPress. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS WordPress 2J Slideshow
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy