Wpwax Post_grid\,_slider_\&_carousel_ultimate

5 CVEs affecting Wpwax Post_grid\,_slider_\&_carousel_ultimate. Latest disclosed: 2025-01-27. Critical: 0, High: 2.

Top CVEs affecting Wpwax Post_grid\,_slider_\&_carousel_ultimate
CVESeverityScorePublishedSummary
CVE-2024-2006High8.82024-03-13The Post Grid, Slider & Carousel Ultimate – with Shortcode, Gutenberg Block & Elementor Widget plugin for WordPress is vulnerable to PHP Object Injection in al…
CVE-2024-13409High7.52025-01-24The Post Grid, Slider & Carousel Ultimate – with Shortcode, Gutenberg Block & Elementor Widget plugin for WordPress is vulnerable to Local File Inclusion in al…
CVE-2025-24782Medium6.52025-01-27Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in wpWax Post Grid, Slider & Carousel Ult…
CVE-2024-29925Medium6.52024-03-27Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpWax Post Grid, Slider & Carousel Ultimate allows Stored…
CVE-2022-1266Medium4.82022-06-20The Post Grid, Slider & Carousel Ultimate WordPress plugin before 1.5.0 does not sanitise and escape the Header Title, which could allow high privilege users t…