What is CVE-2024-5543?

CVE-2024-5543 is a high-severity vulnerability in Contrid Slideshow Gallery Lite, classified under SQL Injection. CVSS score: 8.1/10. Published 2024-06-12.

How severe is CVE-2024-5543?

High severity. CVSS v3 base score is 8.1 out of 10.

SQL Injection in Contrid Slideshow Gallery Lite

CVE-2024-5543

The Slideshow Gallery LITE plugin for WordPress is vulnerable to time-based SQL Injection via the id parameter in all versions up to, and including, 1.8.1 due to insufficient escaping on the user supplied parameter and lack of sufficient p…

Vulnerability class: SQL Injection

EPSS: 0.005 (37.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.1 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H.

Affected products

Contrid Slideshow Gallery Lite — versions 0

Weakness classification (CWE)

CWE-89 — SQL Injection

References

security@wordfence.com
security@wordfence.com
security@wordfence.com

Frequently asked questions

What is CVE-2024-5543?: CVE-2024-5543 is a high-severity vulnerability in Contrid Slideshow Gallery Lite, classified under SQL Injection. CVSS score: 8.1/10. Published 2024-06-12.
How severe is CVE-2024-5543?: High severity. CVSS v3 base score is 8.1 out of 10.