Exposure of MetaSlider

WordPress plugins

31

exposure score

40,349

sites use

0

exploited

2

critical

CVEs

6 results

CVE-2026-39465CRITICALWordPress Responsive Slider by MetaSlider plugin <= 3.106.0 - Remote Code Execution (RCE) vulnerabilityEPSS 0.7%CVE-2025-26763CRITICALWordPress Slider, Gallery, and Carousel by MetaSlider – Image Slider, Video Slider Plugin <= 3.94.0 - PHP Object Injection vulnerabilityEPSS 0.6%CVE-2026-39467HIGHWordPress Responsive Slider by MetaSlider plugin <= 3.106.0 - PHP Object Injection vulnerabilityEPSS 0.4%CVE-2024-3285MEDIUMSlider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows <= 3.70.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via metaslider ShortcodeEPSS 0.3%CVE-2025-5337MEDIUMSlider, Gallery, and Carousel by MetaSlider <= 3.98.0 - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via aria-label ParameterEPSS 0.2%CVE-2025-24533MEDIUMWordPress MetaSlider plugin <= 3.92.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →