VYPR

Nextend Smart Slider3 Pro

by WordPress

CVEs (1)

  • CVE-2026-34424CriApr 9, 2026
    risk 0.64cvss 9.8epss 0.01

    Smart Slider 3 Pro version 3.5.1.35 for WordPress and Joomla contains a multi-stage remote access toolkit injected through a compromised update system that allows unauthenticated attackers to execute arbitrary code and commands. Attackers can trigger pre-authentication remote…