cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches forcustom-sidebars custom-sidebars

Direction: descending
Jun 16, 2026

Custom Sidebars – Dynamic Sidebar Widget Area Manager # 9539c0ea-1a75-4509-9415-30598fa78c12

CVE, Research URL

9539c0ea-1a75-4509-9415-30598fa78c12

Home page URL

Security reports for Custom Sidebars – Dynamic Sidebar Widget Area Manager

Application

Custom Sidebars – Dynamic Sidebar Widget Area Manager

Date
-
Research Description
Custom Sidebars &#8211; Dynamic Sidebar Classic Widget Area Manager [custom-sidebars] < 2.1.0.2 Custom Sidebars 2.1.0.1 - XSS The Custom Sidebars &ndash; Dynamic Widget Area Manager WordPress plugin was affected by a XSS security vulnerability.
Affected versions
max 2.1.0.2.
Status
vulnerable

Custom Sidebars &#8211; Dynamic Sidebar Widget Area Manager # 3e34ba3532550ca1a8f1b12fe60f0433986b4cbb

CVE, Research URL

3e34ba3532550ca1a8f1b12fe60f0433986b4cbb

Home page URL

Security reports for Custom Sidebars &#8211; Dynamic Sidebar Widget Area Manager

Application

Custom Sidebars &#8211; Dynamic Sidebar Widget Area Manager

Date
Jan 13, 2015
Research Description
Custom Sidebars &#8211; Dynamic Sidebar Classic Widget Area Manager [custom-sidebars] < 2.1.0.2 WordPress Custom Sidebars Plugin <= 2.1.0.1 - XSS Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Update the plugin.
Affected versions
max 2.1.0.2.
Status
vulnerable

Custom Sidebars &#8211; Dynamic Sidebar Widget Area Manager # 031d4558291f173203208ade5caa0576b679bd4d

CVE, Research URL

031d4558291f173203208ade5caa0576b679bd4d

Home page URL

Security reports for Custom Sidebars &#8211; Dynamic Sidebar Widget Area Manager

Application

Custom Sidebars &#8211; Dynamic Sidebar Widget Area Manager

Date
Jan 11, 2015
Research Description
Custom Sidebars &#8211; Dynamic Sidebar Classic Widget Area Manager [custom-sidebars] < 2.1.0.2 Custom Sidebars < 2.1.0.2 - Reflected Cross Site Scripting The Custom Sidebars plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the cs-msg parameter in versions up to, and including, 2.1.0.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.
Affected versions
max 2.1.0.2.
Status
vulnerable
Jun 07, 2024

Custom Sidebars &#8211; Dynamic Sidebar Widget Area Manager # CVE-2017-18511

CVE, Research URL

CVE-2017-18511

Home page URL

Security reports for Custom Sidebars &#8211; Dynamic Sidebar Widget Area Manager

Application

Custom Sidebars &#8211; Dynamic Sidebar Widget Area Manager

Date
Aug 14, 2019
Research Description
The custom-sidebars plugin before 3.0.8.1 for WordPress has CSRF.
Affected versions
max 3.0.8.1.
Status
vulnerable

Custom Sidebars &#8211; Dynamic Sidebar Widget Area Manager # CVE-2017-18510

CVE, Research URL

CVE-2017-18510

Home page URL

Security reports for Custom Sidebars &#8211; Dynamic Sidebar Widget Area Manager

Application

Custom Sidebars &#8211; Dynamic Sidebar Widget Area Manager

Date
Aug 14, 2019
Research Description
The custom-sidebars plugin before 3.1.0 for WordPress has CSRF related to set location, import actions, and export actions.
Affected versions
max 3.1.0.
Status
vulnerable