cleantalk
Vulnerabilities and Security Researches

Slider by Soliloquy – Responsive Image Slider for WordPress, CVE-2021-47922

CVE, Research URL

CVE-2021-47922

Home page URL

Security reports for Slider by Soliloquy – Responsive Image Slider for WordPress

Application

Slider by Soliloquy – Responsive Image Slider for WordPress

Published on
May 10, 2026
Research Description
Slider by Soliloquy 2.6.2 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts through the title parameter. Attackers can add JavaScript payloads in the title field when creating or editing sliders, which executes in the browsers of users viewing the slider on both administrative and frontend pages.
Affected versions
max 2.6.2.
Status
vulnerable
Previous vulnerability researches
wpForo Forum (CVE-2026-40767) , May 02, 2026
wpForo Forum (CVE-2019-19109) , Jun 06, 2024
wpForo Forum (CVE-2022-40205) , Jun 06, 2024
wpForo Forum (CVE-2021-24406) , Jun 06, 2024
wpForo Forum (CVE-2022-38144) , Jun 06, 2024
New vulnerability
Contact Form Builder, Contact Widget (CVE-2022-50959) , May 12, 2026
wpForo Forum (CVE-2026-40798) , May 12, 2026
Picture Gallery – Frontend Image Uploads, AJAX Photo List (CVE-2021-47951) , May 12, 2026
Amministrazione Aperta (CVE-2022-50956) , May 12, 2026
Slider by Soliloquy – Responsive Image Slider for WordPress (CVE-2021-47922) , May 12, 2026