cleantalk
Vulnerabilities and Security Researches

Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows, 49240f72da5449e0485de70c9e41a1181f2df412

CVE, Research URL

49240f72da5449e0485de70c9e41a1181f2df412

Home page URL

Security reports for Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows

Application

Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows

Published on
Mar 22, 2023
Research Description
Slider, Gallery, and Carousel by MetaSlider &#8211; Image Slider, Video Slider [ml-slider] < 3.29.1 WordPress Meta Slider Plugin <= 3.29.0 is vulnerable to Cross Site Scripting (XSS) Update the WordPress Meta Slider plugin to the latest available version (at least 3.29.1). WordFence discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Meta Slider Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 3.29.1.
Affected versions
max 3.29.1.
Status
vulnerable
Previous vulnerability researches
Aspose.PDF Exporter (ba689b31099f4450a319e4ca642276747f95b614) , Jun 07, 2024
Aspose.PDF Exporter (51dd0b6b-ba90-47e2-ad80-56b3e122bfd4) , Jun 16, 2026
Aspose.PDF Exporter (4e4634889e32cede4d449b4f63537ec92e40df54) , Jun 16, 2026
New vulnerability
leenk.me (753d31765913b4d2dbb8af0a5512e5f1f8c70c61) , Jun 16, 2026
Social Hashtags (5abd4657-8a58-4d97-b8cb-b67235ab5b8a) , Jun 16, 2026
Social Hashtags (1965c7b04565befbb11c28b56cb6922733a47b03) , Jun 16, 2026
Social Hashtags (a7cf6766582e354e702766a86f85716127d19bdc) , Jun 16, 2026
Simple Calendar &#8211; Google Calendar Plugin (e98a6264-9c5a-417f-b2f8-bd0017b411a0) , Jun 16, 2026