Nextcode Image Slider By Nextcode — known CVE vulnerabilities
Every CVE whose affected-product data names Nextcode Image Slider By Nextcode, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2022-29437 — CVSS 5.4 (medium): Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in Image Slider by NextCode plugin <= 1.1.2 at WordPress.
CVE-2022-29439 — CVSS 5.4 (medium): Cross-Site Request Forgery (CSRF) vulnerability in Image Slider by NextCode plugin <= 1.1.2 at WordPress allows deleting slides.
CVE-2022-29438 — CVSS 4.8 (medium): Authenticated (author or higher user role) Persistent Cross-Site Scripting (XSS) vulnerability in Image Slider by NextCode plugin <= 1.1.2…