VYPR

Bdthemes Prime Slider Lite

by WordPress

Source repositories

CVEs (3)

  • CVE-2026-4341MedApr 8, 2026
    risk 0.42cvss 6.4epss 0.00

    The Prime Slider – Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'follow_us_text' setting of the Mount widget in all versions up to, and including, 4.1.10. This is due to insufficient input sanitization and output escaping.…

  • CVE-2025-68500MedDec 24, 2025
    risk 0.32cvss 4.9epss 0.00

    Server-Side Request Forgery (SSRF) vulnerability in bdthemes Prime Slider – Addons For Elementor bdthemes-prime-slider-lite allows Server Side Request Forgery.This issue affects Prime Slider – Addons For Elementor: from n/a through <= 4.0.10.

  • CVE-2025-14277MedDec 18, 2025
    risk 0.21cvss 4.3epss 0.00

    The Prime Slider – Addons for Elementor plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 4.0.9 via the import_elementor_template AJAX action. This makes it possible for authenticated attackers, with subscriber level access…