averta
Web & CMS Pluginscommercial
Latest CVEs
The 15 most recently published vulnerabilities affecting averta.
- CVE-2026-48968WordPress Master Slider plugin <= 3.10.8 - Cross Site Scripting (XSS) vulnerability6.5
- CVE-2025-68558WordPress Depicter Slider plugin <= 4.0.4 - Broken Access Control vulnerability6.5
- CVE-2025-12379Shortcodes and extra features for Phlox theme <= 2.17.13 - Authenticated (Contributor+) Stored Cross-Site Scripting via Modern Heading Widget6.4
- CVE-2025-4776Phlox <= 2.17.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via `data-caption` HTML Attribute6.4
- CVE-2025-13215Shortcodes and extra features for Phlox theme <= 2.17.13 - Unauthenticated Draft Posts Information Exposure5.3
- CVE-2025-11370Depicter <= 4.0.7 - Missing Authorization to Unauthenticated Display Rule Updates5.3
- CVE-2025-69016WordPress Shortcodes and extra features for Phlox theme plugin <= 2.17.15 - Broken Access Control vulnerability4.3
- CVE-2025-63071WordPress Shortcodes and extra features for Phlox theme plugin <= 2.17.15 - Sensitive Data Exposure vulnerability5.3
- CVE-2025-63045WordPress Master Slider Pro plugin <= 3.7.12 - Cross Site Scripting (XSS) vulnerability6.5
- CVE-2025-12497Premium Portfolio Features for Phlox theme <= 2.3.10 - Unauthenticated Local File Inclusion via args[extra_template_path]8.1
- CVE-2025-11373Popup and Slider Builder by Depicter – Add Email collecting Popup, Popup Modal, Coupon Popup, Image Slider, Carousel Slider, Post Slider Carousel <= 4.0.4 - Missing Authorization to Authenticated (Contributor+) Safe File Type Upload4.3
- CVE-2025-8383Depicter <= 4.0.4 - Cross-Site Request Forgery4.3
- CVE-2025-58025WordPress Master Slider Plugin <= 3.11.0 - Cross Site Scripting (XSS) Vulnerability6.5
- CVE-2025-5291Master Slider <= 3.10.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via masterslider_pb and ms_slide Shortcodes6.4
- CVE-2025-39412WordPress Master Slider plugin <= 3.11.0 - Broken Access Control vulnerability4.3