Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

comparisonslider — Vulnerabilities & Security Advisories 3

Browse all 3 CVE security advisories affecting comparisonslider. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Comparisonslider is a web-based comparison tool enabling side-by-side analysis of products or services. Historically, it has been susceptible to cross-site scripting (XSS) and remote code execution (RCE) vulnerabilities, often stemming from improper input validation and insecure deserialization. The component's integration with third-party APIs and dynamic content rendering increases its attack surface. While no major public incidents have been documented, its three CVE records highlight consistent issues with sanitization and access controls, making it a potential vector for data exfiltration or system compromise when deployed in unpatched states.

Found 3 results / 3Clear Filters
Top products by comparisonslider: Comparison Slider
CVE IDTitleCVSSSeverityPublished
CVE-2024-4427 Comparison Slider <= 1.0.5 - Missing Authorization — Comparison SliderCWE-862 4.3 Medium2024-05-30
CVE-2024-4426 Comparison Slider <= 1.0.5 - Cross-Site Request Forgery — Comparison SliderCWE-352 4.3 Medium2024-05-30
CVE-2024-4422 Comparison Slider <= 1.0.5 - Authenticated (Subscriber+) Stored Cross-Site Scripting — Comparison SliderCWE-862 6.4 Medium2024-05-30

This page lists every published CVE security advisory associated with comparisonslider. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.