Nextendweb Smart Slider 3 — known CVE vulnerabilities
Every CVE whose affected-product data names Nextendweb Smart Slider 3, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2022-3357 — CVSS 8.8 (high): The Smart Slider 3 WordPress plugin before 3.5.1.11 unserialises the content of an imported file, which could lead to PHP object injection…
CVE-2023-0660 — CVSS 5.4 (medium): The Smart Slider 3 WordPress plugin before 3.5.1.14 does not properly validate and escape some of its shortcode attributes before…
CVE-2022-45845 — CVSS 4.3 (medium): Deserialization of Untrusted Data vulnerability in Nextend Smart Slider 3.This issue affects Smart Slider 3: from n/a through 3.5.1.9.