10web Slider

9 CVEs affecting 10web Slider. Latest disclosed: 2025-03-25. Critical: 0, High: 3.

Top CVEs affecting 10web Slider
CVESeverityScorePublishedSummary
CVE-2024-7150High8.82024-08-08The Slider by 10Web – Responsive Image Slider plugin for WordPress is vulnerable to time-based SQL Injection via the 'id' parameter in all versions up to, and…
CVE-2021-24132High8.82021-03-18The Slider by 10Web WordPress plugin, versions before 1.2.36, in the bulk_action, export_full and save_slider_db functionalities of the plugin were vulnerable…
CVE-2024-32578High7.12024-04-18Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 10Web Slider by 10Web allows Reflected XSS.This issue aff…
CVE-2024-10566Medium6.12025-03-25The Slider by 10Web WordPress plugin before 1.2.62 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to…
CVE-2024-10565Medium6.12025-03-25The Slider by 10Web WordPress plugin before 1.2.62 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to…
CVE-2024-6408Medium5.42024-07-31The Slider by 10Web WordPress plugin before 1.2.57 does not sanitise and escape its Slider Title, which could allow high privilege users such as editors and a…
CVE-2024-6026Medium5.42024-07-11The Slider by 10Web WordPress plugin before 1.2.56 does not sanitise and escape some of its Slide options, which could allow authenticated users with access t…
CVE-2024-8283Medium4.82024-09-30The Slider by 10Web WordPress plugin before 1.2.59 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to…
CVE-2022-4197Medium4.82022-12-26The Sliderby10Web WordPress plugin before 1.2.53 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to per…