Averta Depicter — Popup & Slider Builder
8 CVEs affecting Averta Depicter — Popup & Slider Builder. Latest disclosed: 2026-01-06. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-4389 | High | 8.8 | 2024-08-14 | The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the uploadFile f… |
CVE-2025-2011 | High | 7.5 | 2025-05-06 | The Slider & Popup Builder by Depicter plugin for WordPress is vulnerable to generic SQL Injection via the ‘s' parameter in all versions up to, and including… |
CVE-2024-4390 | Medium | 6.5 | 2024-06-20 | The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable to Arbitrary Nonce Generation in all versions up to, and including, 3.0.2. This m… |
CVE-2024-4633 | Medium | 6.4 | 2024-12-06 | The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘addExtraMimeType’ function in versions up… |
CVE-2025-11370 | Medium | 5.3 | 2026-01-06 | The Popup and Slider Builder by Depicter – Add Email collecting Popup, Popup Modal, Coupon Popup, Image Slider, Carousel Slider, Post Slider Carousel plugin fo… |
CVE-2025-11373 | Medium | 4.3 | 2025-11-05 | The Popup and Slider Builder by Depicter – Add Email collecting Popup, Popup Modal, Coupon Popup, Image Slider, Carousel Slider, Post Slider Carousel plugin fo… |
CVE-2025-8383 | Medium | 4.3 | 2025-10-31 | The Depicter plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions less than, or equal to, 4.0.4. This is due to missing or incorrect no… |
CVE-2023-6493 | Medium | 4.3 | 2024-01-05 | The Depicter Slider – Responsive Image Slider, Video Slider & Post Slider plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up t… |