Vulnerabilities and security researches forwp-tripadvisor-review-slider wp-tripadvisor-review-slider
Direction: descendingMar 30, 2026
WP TripAdvisor Review Slider # CVE-2026-32490
- CVE, Research URL
- Home page URL
- Application
- Date
- Mar 25, 2026
- Research Description
- Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in jgwhite33 WP TripAdvisor Review Slider wp-tripadvisor-review-slider allows Stored XSS.This issue affects WP TripAdvisor Review Slider: from n/a through <= 14.1.
- Affected versions
-
max 14.1.
- Status
-
vulnerable
Jun 06, 2024
WP TripAdvisor Review Slider # CVE-2024-35630
- CVE, Research URL
- Home page URL
- Application
- Date
- Jun 03, 2024
- Research Description
- Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in LJ Apps WP TripAdvisor Review Slider allows Blind SQL Injection.This issue affects WP TripAdvisor Review Slider: from n/a through 12.6.
- Affected versions
-
max 12.7.
- Status
-
vulnerable
WP TripAdvisor Review Slider # CVE-2023-0261
- CVE, Research URL
- Home page URL
- Application
- Date
- Feb 13, 2023
- Research Description
- The WP TripAdvisor Review Slider WordPress plugin before 10.8 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as subscriber.
- Affected versions
-
max 11.3.
- Status
-
vulnerable
WP TripAdvisor Review Slider # CVE-2023-6037
- CVE, Research URL
- Home page URL
- Application
- Date
- Jan 01, 2024
- Research Description
- The WP TripAdvisor Review Slider WordPress plugin before 11.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
- Affected versions
-
max 11.9.
- Status
-
vulnerable