Vulnerabilities > I13Websolution > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-09 | CVE-2023-2402 | Unspecified vulnerability in I13Websolution Photo Gallery Slideshow & Masonry Tiled Gallery The Photo Gallery Slideshow & Masonry Tiled Gallery plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the search_term parameter in versions up to, and including, 1.0.13 due to insufficient input sanitization and output escaping. | 6.1 |
| 2023-06-09 | CVE-2023-2604 | Unspecified vulnerability in I13Websolution Team Circle Image Slider With Lightbox The Team Circle Image Slider With Lightbox plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘search_term’ parameter in versions up to, and including, 1.0.17 due to insufficient input sanitization and output escaping. | 6.1 |
| 2023-05-16 | CVE-2023-2708 | Cross-site Scripting vulnerability in I13Websolution Video Gallery The Video Gallery plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘search_term’ parameter in versions up to, and including, 1.0.10 due to insufficient input sanitization and output escaping. | 6.1 |
| 2023-05-16 | CVE-2023-2710 | Cross-site Scripting vulnerability in I13Websolution Video Carousel Slider With Lightbox The video carousel slider with lightbox plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the search_term parameter in versions up to, and including, 1.0.22 due to insufficient input sanitization and output escaping. | 6.1 |
| 2023-05-15 | CVE-2023-1915 | Unspecified vulnerability in I13Websolution Thumbnail Carousel Slider The Thumbnail carousel slider WordPress plugin before 1.1.10 does not sanitise and escape some parameters before outputting them back in pages, leading to Reflected Cross-Site Scripting vulnerability which could be used against high privilege users such as admin. | 6.1 |
| 2023-05-10 | CVE-2022-47600 | Cross-site Scripting vulnerability in I13Websolution Mass Email to Users Unauth. | 6.1 |
| 2023-05-10 | CVE-2023-24392 | Cross-site Scripting vulnerability in I13Websolution Full Width Banner Slider WP Unauth. | 6.1 |
| 2023-05-08 | CVE-2022-46799 | Cross-site Scripting vulnerability in I13Websolution Easy Testimonial Slider and Form Unauth. | 6.1 |
| 2023-04-18 | CVE-2023-2119 | Unspecified vulnerability in I13Websolution Responsive Filterable Portfolio The Responsive Filterable Portfolio plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the search_term parameter in versions up to, and including, 1.0.19 due to insufficient input sanitization and output escaping. | 6.1 |
| 2023-04-18 | CVE-2023-2120 | Unspecified vulnerability in I13Websolution Thumbnail Carousel Slider The Thumbnail carousel slider plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the search_term parameter in versions up to, and including, 1.1.9 due to insufficient input sanitization and output escaping. | 6.1 |