cleantalk
Vulnerabilities and Security Researches

Master Slider – Responsive Touch Slider, 71e7f60eeb9c35699b5a7cda2742c1edce8b9618

CVE, Research URL

71e7f60eeb9c35699b5a7cda2742c1edce8b9618

Home page URL

Security reports for Master Slider – Responsive Touch Slider

Application

Master Slider – Responsive Touch Slider

Published on
Jul 16, 2016
Research Description
Master Slider &#8211; Responsive Touch Slider [master-slider] < 2.8.0 Master Slider <= 2.7.1 - Cross-Site Scripting The Master Slider plugin for WordPress is vulnerable to Cross-Site Scripting via the ‘page’ parameter in versions up to, and including, 2.7.1 due to insufficient input sanitization and output escaping. This makes it possible for attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Affected versions
max 2.8.0.
Status
vulnerable
Previous vulnerability researches
Master Slider &#8211; Responsive Touch Slider (CVE-2024-37222) , Jun 21, 2024
Master Slider &#8211; Responsive Touch Slider (CVE-2024-6490) , Jul 28, 2024
Master Slider &#8211; Responsive Touch Slider (CVE-2026-56014) , Jun 25, 2026
Master Slider &#8211; Responsive Touch Slider (CVE-2025-39412) , Apr 29, 2025
Master Slider &#8211; Responsive Touch Slider (71e7f60eeb9c35699b5a7cda2742c1edce8b9618) , Jun 16, 2026
New vulnerability
ClearSale Total (CVE-2026-8705) , Jun 25, 2026
Osiris Signature Banner (CVE-2026-8905) , Jun 25, 2026
MotorDesk (CVE-2026-9724) , Jun 25, 2026
WP Activity Log (CVE-2026-56005) , Jun 25, 2026
Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction &amp; Membership Plugin (CVE-2026-7761) , Jun 25, 2026