cleantalk
Vulnerabilities and Security Researches

Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows, CVE-2023-1473

CVE, Research URL

CVE-2023-1473

Home page URL

Security reports for Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows

Application

Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows

Published on
Apr 17, 2023
Research Description
The Slider, Gallery, and Carousel by MetaSlider WordPress plugin 3.29.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin
Affected versions
Min -, max 2.2.
Status
vulnerable
Previous vulnerability researches
Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows (CVE-2025-1203) , May 08, 2025
Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows (CVE-2025-1062) , May 08, 2025
Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows (CVE-2025-24533) , Jan 28, 2025
Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows (CVE-2025-26763) , Feb 21, 2025
Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows (CVE-2014-4846) , Jun 06, 2024
New vulnerability
SMS Alert Order Notifications – WooCommerce (CVE-2025-3876) , May 11, 2025
SMS Alert Order Notifications – WooCommerce (CVE-2025-3878) , May 11, 2025
WordPress Review Plugin: The Ultimate Solution for Building a Review Website (CVE-2025-2158) , May 11, 2025
Drag and Drop Multiple File Upload for WooCommerce (CVE-2025-4403) , May 11, 2025
Contact Us By Lord Linus (CVE-2025-1382) , May 11, 2025