VulnTitan VulnTitan Security command center
Plugin Vulnerability Hub
Plugin 5 known issues Latest disclosed Mar 29, 2024

Yoo Slider – Image Slider & Video Slider Vulnerabilities

Review known vulnerability records for the WordPress plugin Yoo Slider – Image Slider & Video Slider (`yoo-slider`), including severity, CVE references, affected versions, and patch status.

Recent tracked CVEs on this page include CVE-2024-31106, CVE-2022-27846 and CVE-2022-27847, so operators can jump from disclosure to patch validation without scanning the full feed first.

View on WordPress.org Back to Feed
Known Records
5
High or Critical
0
Patch Coverage
100%
Last Updated
Mar 17, 2026
Priority CVE Quick Links

Fast paths into Yoo Slider – Image Slider & Video Slider CVE reports

Start with the highest-signal CVE records for this WordPress plugin before scanning the full vulnerability feed.

Indexed CVEs
5
CVE-2024-31106 Medium 2.2.0
CVE-2024-31106 Yoo Slider – Image Slider & Video Slider Cross-Site Scripting

Yoo Slider <= 2.1.1 - Reflected Cross-Site Scripting

CVE-2022-25609 Medium 2.1.0
CVE-2022-25609 Yoo Slider – Image Slider & Video Slider Stored Cross-Site Scripting

Yoo Slider plugin <= 2.0.0 - Stored Cross-Site Scripting

CVE-2022-25608 Medium 2.1.0
CVE-2022-25608 Yoo Slider – Image Slider & Video Slider Cross-Site Request Forgery

Yoo Slider – Image Slider & Video Slider <= 2.0.0 - Cross-Site Request Forgery

CVE-2022-27846 Medium 2.1.0
CVE-2022-27846 Yoo Slider – Image Slider & Video Slider Cross-Site Request Forgery

Yoo Slider plugin <= 2.0.0 - Cross-Site Request Forgery

CVE-2022-27847 Medium 2.1.0
CVE-2022-27847 Yoo Slider – Image Slider & Video Slider Cross-Site Request Forgery

Yoo Slider plugin <= 2.0.0 - Cross-Site Request Forgery

Coverage Snapshot

What this page helps you verify fast

This hub clusters every indexed record for Yoo Slider – Image Slider & Video Slider so operators can confirm whether a disclosed issue maps to the installed slug, version range, and patch path.

Patch Visibility
5 records include a published patch path, leaving 0 with no listed safe release yet.
Severity Mix
0 critical and 0 high severity findings.
Recent CVEs
CVE-2024-31106, CVE-2022-27846 and CVE-2022-27847
Reference Workflow
Jump from the hub into the full report when you need remediation notes, exploit context, CVSS vectors, or source references.
Triage First

Open the records most likely to drive action

These recent records surface the CVE strings, patch cues, and direct report links most operators need first.

Known Vulnerabilities

Reports for Yoo Slider – Image Slider & Video Slider

Sorted by latest disclosure date so newly published issues surface first.

Plugin Medium Patched: Yes CVE-2024-31106
CVE-2024-31106: Yoo Slider <= 2.1.1 - Reflected Cross-Site Scripting

The Yoo Slider plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 2.1.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages th...

Published
Mar 29, 2024
Patched Release
2.2.0
Affected Versions
Versions up to 2.1.1
Next Step
Update to 2.2.0 or newer if supported.
Open CVE-2024-31106 Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2022-27846
CVE-2022-27846: Yoo Slider plugin <= 2.0.0 - Cross-Site Request Forgery

Cross-Site Request Forgery (CSRF) vulnerability in Yooslider Yoo Slider

Published
Apr 11, 2022
Patched Release
2.1.0
Affected Versions
Versions up to 2.0.0
Next Step
Update to 2.1.0 or newer if supported.
Open CVE-2022-27846 Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2022-27847
CVE-2022-27847: Yoo Slider plugin <= 2.0.0 - Cross-Site Request Forgery

Cross-Site Request Forgery (CSRF) vulnerability in Yooslider Yoo Slider

Published
Apr 11, 2022
Patched Release
2.1.0
Affected Versions
Versions up to 2.0.0
Next Step
Update to 2.1.0 or newer if supported.
Open CVE-2022-27847 Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2022-25609
CVE-2022-25609: Yoo Slider plugin <= 2.0.0 - Stored Cross-Site Scripting

Stored Cross-Site Scripting (XSS) in Yoo Slider – Image Slider & Video Slider (WordPress plugin) allows attackers with contributor or higher user role to inject the malicious code.

Published
Mar 21, 2022
Patched Release
2.1.0
Affected Versions
Versions before 2.1.0
Next Step
Update to 2.1.0 or newer if supported.
Open CVE-2022-25609 Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2022-25608
CVE-2022-25608: Yoo Slider – Image Slider & Video Slider <= 2.0.0 - Cross-Site Request Forgery

Cross-Site Request Forgery (CSRF) in Yoo Slider – Image Slider & Video Slider (WordPress plugin) allows attackers to trick authenticated users into unwanted slider duplicate or delete action.

Published
Mar 21, 2022
Patched Release
2.1.0
Affected Versions
Versions before 2.1.0
Next Step
Update to 2.1.0 or newer if supported.
Open CVE-2022-25608 Report Open CVE Reference