Lambertgroup Allinone Content Slider

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:lambertgroup:lambertgroup_-_allinone_-_content_slider:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorLambertgroup (5f4abfb2-fafe-551d-a1c1-29825c876b87)
ProductLambertgroup Allinone Content Slider (9418c286-a1a3-536f-9992-a3b36c7b45bd)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2026-28109 vulnerable 2026-06-03 15:18:08.067133 WordPress LambertGroup - AllInOne - Content Slider plugin <= 3.8 - Reflected Cross Site Scripting (XSS) vulnerability
HIGH (7.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in LambertGroup LambertGroup - AllInOne - Content Slider all-in-one-contentSlider allows Reflected XSS.This issue affects LambertGroup - AllInOne - Content Slider: from n/a through <= 3.8.
Published: 2026-03-05T05:54:27.176Z
Updated: 2026-04-28T17:45:14.351Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-60109 vulnerable 2026-06-03 15:07:55.693353 WordPress LambertGroup - AllInOne - Content Slider Plugin <= 3.8 - SQL Injection Vulnerability
HIGH (8.5)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in LambertGroup LambertGroup - AllInOne - Content Slider all-in-one-contentSlider allows Blind SQL Injection.This issue affects LambertGroup - AllInOne - Content Slider: from n/a through <= 3.8.
Published: 2025-09-26T08:31:27.487Z
Updated: 2026-04-28T16:13:54.809Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.