High severity8.8NVD Advisory· Published Jan 12, 2018· Updated Jun 17, 2026
CVE-2018-5372
CVE-2018-5372
Description
The Testimonial Slider plugin through 1.2.4 for WordPress has SQL Injection via settings\sliders.php (current_slider_id parameter).
Affected products
2<=1.2.4+ 1 more
- (no CPE)range: <=1.2.4
- (no CPE)range: <=1.2.4
Patches
Vulnerability mechanics
References
1- www.defensecode.com/advisories/DC-2018-01-005_WordPress_Testimonial_Slider_Plugin_Advisory.pdfnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.