Tonjoostudio Fluid-responsive-slideshow — known CVE vulnerabilities
Every CVE whose affected-product data names Tonjoostudio Fluid-responsive-slideshow, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2016-10974 — CVSS 8.8 (high): The fluid-responsive-slideshow plugin before 2.2.7 for WordPress has frs_save CSRF with resultant stored XSS.
CVE-2016-10975 — CVSS 6.1 (medium): The fluid-responsive-slideshow plugin before 2.2.7 for WordPress has reflected XSS via the skin parameter.