Skip to main content

Video Carousel Slider With Lightbox

4 CVEs product

Monthly

CVE-2019-25212 MEDIUM PATCH This Month

The video carousel slider with lightbox plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.0.6 due to insufficient escaping on the user. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity.

SQLi WordPress Video Carousel Slider With Lightbox
NVD
CVSS 3.1
4.9
EPSS
1.0%
CVE-2023-5945 MEDIUM POC PATCH This Month

The video carousel slider with lightbox plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 1.0. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

WordPress CSRF Video Carousel Slider With Lightbox
NVD GitHub
CVSS 3.1
5.4
EPSS
0.3%
CVE-2023-32797 MEDIUM This Month

Unauth. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Video Carousel Slider With Lightbox
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2023-2710 MEDIUM This Month

The video carousel slider with lightbox plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the search_term parameter in versions up to, and including, 1.0.22 due to insufficient. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS WordPress Video Carousel Slider With Lightbox
NVD VulDB
CVSS 3.1
6.1
EPSS
0.5%
EPSS 1% CVSS 4.9
MEDIUM PATCH This Month

The video carousel slider with lightbox plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.0.6 due to insufficient escaping on the user. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity.

SQLi WordPress Video Carousel Slider With Lightbox
NVD
EPSS 0% CVSS 5.4
MEDIUM POC PATCH This Month

The video carousel slider with lightbox plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 1.0. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

WordPress CSRF Video Carousel Slider With Lightbox
NVD GitHub
EPSS 0% CVSS 6.1
MEDIUM This Month

Unauth. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Video Carousel Slider With Lightbox
NVD
EPSS 1% CVSS 6.1
MEDIUM This Month

The video carousel slider with lightbox plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the search_term parameter in versions up to, and including, 1.0.22 due to insufficient. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS WordPress Video Carousel Slider With Lightbox
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy