cleantalk
Vulnerabilities and Security Researches

Sliderby10Web, b034a2d9a95ce88dee45df6eb6eeb30de3de591b

CVE, Research URL

b034a2d9a95ce88dee45df6eb6eeb30de3de591b

Home page URL

Security reports for Sliderby10Web

Application

Sliderby10Web

Published on
-
Research Description
Slider by 10Web &#8211; Responsive Image Slider [slider-wd] < 1.2.53 WordPress Slider by 10Web Plugin <= 1.2.52 is vulnerable to Cross Site Scripting (XSS) Update the WordPress Slider by 10Web plugin to the latest available version (at least 1.2.53). zhangyunpei discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Slider by 10Web Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 1.2.53.
Affected versions
max 1.2.53.
Status
vulnerable
Previous vulnerability researches
Axact Author List Widget (64c0451c94de7e0131133a488609353b793f2348) , Jun 07, 2024
Axact Author List Widget (CVE-2025-22514) , Jan 15, 2025
Axact Author List Widget (b36562836dd76568d374ac032aa3b6cad3c82287) , Jun 16, 2026
Axact Author List Widget (f2497798-90dd-4f93-b6ff-31e02f8ca6fc) , Jun 16, 2026
New vulnerability
Premmerce SEO for WooCommerce (2ea441887a5479def967e5bac9a5fadb59ccfa21) , Jun 16, 2026
Premmerce SEO for WooCommerce (6d8910c719b2a132ec93828cd37e418b19cac960) , Jun 16, 2026
WooCommerce (0b51f01a-24d9-4101-bdcf-728b21efc5ed) , Jun 16, 2026
WooCommerce (5619e13f0d284b547a86dfa0340848e80577103b) , Jun 16, 2026
WooCommerce (bb053f3c24afaa2cf4bc50ebf0e88d8b6f601d08) , Jun 16, 2026