Averta Depicter — Popup & Slider Builder

8 CVEs affecting Averta Depicter — Popup & Slider Builder. Latest disclosed: 2026-01-06. Critical: 0, High: 2.

Top CVEs affecting Averta Depicter — Popup & Slider Builder
CVESeverityScorePublishedSummary
CVE-2024-4389High8.82024-08-14The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the uploadFile f…
CVE-2025-2011High7.52025-05-06The Slider & Popup Builder by Depicter plugin for WordPress is vulnerable to generic SQL Injection via the ‘s' parameter in all versions up to, and including…
CVE-2024-4390Medium6.52024-06-20The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable to Arbitrary Nonce Generation in all versions up to, and including, 3.0.2. This m…
CVE-2024-4633Medium6.42024-12-06The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘addExtraMimeType’ function in versions up…
CVE-2025-11370Medium5.32026-01-06The Popup and Slider Builder by Depicter – Add Email collecting Popup, Popup Modal, Coupon Popup, Image Slider, Carousel Slider, Post Slider Carousel plugin fo…
CVE-2025-11373Medium4.32025-11-05The Popup and Slider Builder by Depicter – Add Email collecting Popup, Popup Modal, Coupon Popup, Image Slider, Carousel Slider, Post Slider Carousel plugin fo…
CVE-2025-8383Medium4.32025-10-31The Depicter plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions less than, or equal to, 4.0.4. This is due to missing or incorrect no…
CVE-2023-6493Medium4.32024-01-05The Depicter Slider – Responsive Image Slider, Video Slider & Post Slider plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up t…