VYPR

Wp Splashing Images

by WordPress

Source repositories

CVEs (2)

  • CVE-2018-6195HigJan 30, 2018
    risk 0.40cvss 7.2epss 0.04

    admin/partials/wp-splashing-admin-main.php in the Splashing Images plugin (wp-splashing-images) before 2.1.1 for WordPress allows authenticated (administrator, editor, or author) remote attackers to conduct PHP Object Injection attacks via crafted serialized data in the…

  • CVE-2018-6194MedJan 30, 2018
    risk 0.24cvss 4.8epss 0.01

    A cross-site scripting (XSS) vulnerability in admin/partials/wp-splashing-admin-sidebar.php in the Splashing Images plugin (wp-splashing-images) before 2.1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the search parameter to…