Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total2

Critical0

High0

Medium2

Search Severity Year Type Sort Order

Reset

Showing 1-2 of 2 records

Threat Entry Updated 2025-05-06

CVE-2022-3237 - Wp Contact Slider Plugin

The WP Contact Slider WordPress plugin before 2.4.8 does not sanitize and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

PLUGIN Wp Contact Slider

CVE-2022-3237

MEDIUM CVSS 4.8 2022-10-31

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2024-11-21

CVE-2022-1301 - Wp Contact Slider Plugin

The WP Contact Slider WordPress plugin before 2.4.7 does not sanitize and escape the Text to Display settings of sliders, which could allow high privileged users such as editor and above to perform Cross-Site Scripting attacks even when the unfiltered_html is disallowed

PLUGIN Wp Contact Slider

CVE-2022-1301

MEDIUM CVSS 4.8 2022-07-04

Risk Score

Open Full Technical Breakdown

Blog

"Prevention is cheaper than a breach"

Threat Database

CVE-2022-3237 - Wp Contact Slider Plugin

CVE-2022-1301 - Wp Contact Slider Plugin

Company Links

Contact Us