← Back

Slidervilla

slidervilla

6 CVEs • 3 products

Products (3)

Click to collapse
Toggle
Testimonial Slider
testimonial_slider
3 CVEs
Smooth Slider
smooth_slider
2 CVEs
Dbox Slider
dbox_slider
1 CVE

CVEs (6)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-44741
1Slidervilla
1Testimonial Slider
Jun 17, 2026
Nov 8, 2022
N/A· v4
8.8 HIGH· v3
N/A· v2
Cross-Site Request Forgery (CSRF) vulnerability leading to Cross-Site Scripting (XSS) in David Anderson Testimonial Slider plugin <= 1.3.1 on WordPress.
CVE-2015-9454
1Slidervilla
1Smooth Slider
Nov 21, 2024
Oct 7, 2019
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
The smooth-slider plugin before 2.7 for WordPress has SQL Injection via the wp-admin/admin.php?page=smooth-slider-admin current_slider_id parameter.
CVE-2015-9417
1Slidervilla
1Testimonial Slider
Nov 21, 2024
Sep 26, 2019
N/A· v4
6.5 MEDIUM· v3
4.3 MEDIUM· v2
The testimonial-slider plugin through 1.2.1 for WordPress has CSRF with resultant XSS.
CVE-2018-5374
1Slidervilla
1Dbox Slider
Nov 21, 2024
Jan 12, 2018
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
The Dbox 3D Slider Lite plugin through 1.2.2 for WordPress has SQL Injection via settings\sliders.php (current_slider_id parameter).
CVE-2018-5373
1Slidervilla
1Smooth Slider
Nov 21, 2024
Jan 12, 2018
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
The Smooth Slider plugin through 2.8.6 for WordPress has SQL Injection via smooth-slider.php (trid parameter).
CVE-2018-5372
1Slidervilla
1Testimonial Slider
Nov 21, 2024
Jan 12, 2018
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
The Testimonial Slider plugin through 1.2.4 for WordPress has SQL Injection via settings\sliders.php (current_slider_id parameter).