VYPR

Logo Showcase Ultimate

by WordPress

Source repositories

CVEs (3)

  • CVE-2024-1951HigMar 13, 2024
    risk 0.49cvss 7.5epss 0.01

    The Logo Showcase Ultimate – Logo Carousel, Logo Slider & Logo Grid plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.3.8 via deserialization via shortcode of untrusted input. This makes it possible for authenticated attackers,…

  • CVE-2025-32499MedApr 9, 2025
    risk 0.42cvss 6.5epss 0.01

    Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in wpWax Logo Showcase Ultimate logo-showcase-ultimate allows PHP Local File Inclusion.This issue affects Logo Showcase Ultimate: from n/a through <= 1.4.4.

  • CVE-2024-8046MedAug 27, 2024
    risk 0.35cvss 6.4epss 0.00

    The Logo Showcase Ultimate – Logo Carousel, Logo Slider & Logo Grid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.4.1 due to insufficient input sanitization and output escaping. This makes it…