Smart Slider 3

Nextendweb

Developer

3.5.1.34

Latest version

800,000

Installations

No date

Last updated

WordPress Plugin

No VDP

Claim ownership

Report vulnerability

Vulnerabilities

Security Contributors

Vulnerability history

0 present

8 patched

3 Mitigation rules

Authenticated (Subscriber+) Arbitrary File Read via actionExportAll vulnerability
<= 3.5.1.33
17 hours ago
Authenticated (Administrator+) SQL Injection via `sliderid` Parameter vulnerability
<= 3.5.1.28
Jul 29, 2025
Missing Authorization to Limited File Upload vulnerability
<= 3.5.1.22
Apr 15, 2024
Contributor+ Stored XSS vulnerability
< 3.5.1.14
Mar 6, 2023
Auth. Stored Cross-Site Scripting (XSS) vulnerability
<= 3.5.1.9
Nov 23, 2022
Auth. PHP Object Injection vulnerability
<= 3.5.1.9
Nov 23, 2022
PHP Object Injection vulnerability
<= 3.5.1.9
Oct 10, 2022
Authenticated Stored Cross-Site Scripting (XSS) vulnerability
<= 3.5.0.8
Jun 7, 2021