I13websolution Thumbnail Carousel Slider — known CVE vulnerabilities
Every CVE whose affected-product data names I13websolution Thumbnail Carousel Slider, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2015-10144 — CVSS 8.8 (high): The Responsive Thumbnail Slider plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type sanitization in the…
CVE-2023-1915 — CVSS 6.1 (medium): The Thumbnail carousel slider WordPress plugin before 1.1.10 does not sanitise and escape some parameters before outputting them back in…
CVE-2023-2120 — CVSS 6.1 (medium): The Thumbnail carousel slider plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the search_term parameter in…
CVE-2019-25222 — CVSS 4.9 (medium): The Thumbnail carousel slider plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and…
CVE-2023-5821 — CVSS 4.3 (medium): The Thumbnail carousel slider plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 1.0. This is due to missing nonce…