Every CVE whose affected-product data names 10web Slider, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2021-24132 — CVSS 8.8 (high): The Slider by 10Web WordPress plugin, versions before 1.2.36, in the bulk_action, export_full and save_slider_db functionalities of the…
CVE-2024-7150 — CVSS 8.8 (high): The Slider by 10Web – Responsive Image Slider plugin for WordPress is vulnerable to time-based SQL Injection via the 'id' parameter in…
CVE-2024-32578 — CVSS 7.1 (high): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 10Web Slider by 10Web allows…
CVE-2024-10566 — CVSS 6.1 (medium): The Slider by 10Web WordPress plugin before 1.2.62 does not sanitise and escape some of its settings, which could allow high privilege…
CVE-2024-10565 — CVSS 6.1 (medium): The Slider by 10Web WordPress plugin before 1.2.62 does not sanitise and escape some of its settings, which could allow high privilege…
CVE-2024-6026 — CVSS 5.4 (medium): The Slider by 10Web WordPress plugin before 1.2.56 does not sanitise and escape some of its Slide options, which could allow authenticated…
CVE-2024-6408 — CVSS 5.4 (medium): The Slider by 10Web WordPress plugin before 1.2.57 does not sanitise and escape its Slider Title, which could allow high privilege users…
CVE-2022-4197 — CVSS 4.8 (medium): The Sliderby10Web WordPress plugin before 1.2.53 does not sanitise and escape some of its settings, which could allow high privilege users…
CVE-2024-8283 — CVSS 4.8 (medium): The Slider by 10Web WordPress plugin before 1.2.59 does not sanitise and escape some of its settings, which could allow high privilege…