Log out
Get PRO

Latest

Input validation vulnerability in Image Slider 1.1.125

  • Severity: medium-risk
  • Status: Fixed
  • Publication: April 22, 2024

A popular add-on for WordPress called Image Slider has a security issue that allows hackers to inject malicious code into web pages. This can happen on any version of the plugin up to version 1.1.125, and is caused by not properly cleaning up user input and output. This means that attackers with certain permissions can add harmful scripts to pages, which will execute when someone views the page. This only affects WordPress sites that have multiple sites or have disabled a security feature called unfiltered_html.

Detected in:

Image Slider fixed vulnerable versions: >= * <= 1.1.125

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

© Really Simple Plugins
CoC 70461155
Kalmarweg 14-5
9723 JG, Groningen (NL)

Wordpress Linkedin Github

Get Started

About

Popular articles