Tribulant Slideshow Gallery — known CVE vulnerabilities
Every CVE whose affected-product data names Tribulant Slideshow Gallery, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2018-18018 — CVSS 9.8 (critical): SQL Injection exists in the Tribulant Slideshow Gallery plugin 1.6.8 for WordPress via the wp-admin/admin.php?page=slideshow-galleries&metho…
CVE-2023-28491 — CVSS 6.7 (medium): Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Tribulant Slideshow Gallery LITE.This…
CVE-2018-18017 — CVSS 6.1 (medium): XSS exists in the Tribulant Slideshow Gallery plugin 1.6.8 for WordPress via the wp-admin/admin.php?page=slideshow-galleries&method=save…
CVE-2018-18019 — CVSS 6.1 (medium): XSS exists in the Tribulant Slideshow Gallery plugin 1.6.8 for WordPress via the wp-admin/admin.php?page=slideshow-slides&method=save…
CVE-2018-17946 — CVSS 6.1 (medium): The Tribulant Slideshow Gallery plugin before 1.6.6.1 for WordPress has XSS via the id, method, Gallerymessage, Galleryerror, or…
CVE-2023-28497 — CVSS 5.4 (medium): Cross-Site Request Forgery (CSRF) vulnerability in Tribulant Slideshow Gallery LITE plugin <= 1.7.6 versions.
CVE-2024-31353 — CVSS 5.3 (medium): Insertion of Sensitive Information into Log File vulnerability in Tribulant Slideshow Gallery.This issue affects Slideshow Gallery: from…
CVE-2021-24882 — CVSS 4.8 (medium): The Slideshow Gallery WordPress plugin before 1.7.4 does not sanitise and escape the Slide "Title", "Description", and Gallery "Title"…