Logo Slider – Logo Carousel, Client Logo Slider & Brand Showcase for WordPress

Wordfence Intelligence   >   Vulnerability Database   >   WordPress Plugins   >   Logo Slider – Logo Carousel, Client Logo Slider & Brand Showcase for WordPress

Information

Software Type Plugin
Software Slug logo-slider-wp (view on wordpress.org)
Software Status Active
Software Author logichunt
Software Website logichunt.com
Software Downloads 430,217
Software Active Installs 10,000
Software Record Last Updated June 18, 2026

9 Vulnerabilities

Submit a Vulnerability
Logo Slider <= 4.9.0 - Authenticated (Author+) Stored Cross-Site Scripting via 'logo-slider' Shortcode
6.4
CVE-2026-0609
Mar 20, 2026
Researcher: Muhammad Yudha - DJ
Logo Slider <= 4.9.0 - Authenticated (Author+) Stored Cross-Site Scripting
6.4
CVE-2026-24626
Jan 10, 2026
Researcher: Athiwat Tiprasaharn (Jitlada)
Logo Slider <= 4.8.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2025-13153
Dec 12, 2025
Researcher: Alex Tselevich (nos3curity)
Logo Slider <= 4.5.0 - Authenticated (Admin+) Stored Cross-Site Scripting
4.4
CVE-2024-12308
Feb 3, 2025
Researcher: Dmitrii Ignatyev
Logo Slider <= 4.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-10896
Nov 7, 2024
Researcher: Dmitrii Ignatyev
Logo Slider <= 4.1.0 - Authenticated (Author+) Stored Cross-Site Scripting
6.4
CVE-2024-10473
Nov 7, 2024
Researcher: Dmitrii Ignatyev
Logo Slider <= 4.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-5429
Sep 26, 2024
Researcher: Dmitrii Ignatyev
Logo Slider <= 3.9.9 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-3288
May 17, 2024
Researcher: Krugov Artyom
Logo Slider <= 3.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2022-4664
Dec 16, 2022
Researcher: István Márton
Title Status CVE ID CVSS Researchers Date
Logo Slider <= 4.9.0 - Authenticated (Author+) Stored Cross-Site Scripting via 'logo-slider' Shortcode Unpatched CVE-2026-0609 6.4 Muhammad Yudha - DJ March 20, 2026
Logo Slider <= 4.9.0 - Authenticated (Author+) Stored Cross-Site Scripting Unpatched CVE-2026-24626 6.4 Athiwat Tiprasaharn (Jitlada) January 10, 2026
Logo Slider <= 4.8.0 - Authenticated (Contributor+) Stored Cross-Site Scripting Patched CVE-2025-13153 6.4 Alex Tselevich (nos3curity) December 12, 2025
Logo Slider <= 4.5.0 - Authenticated (Admin+) Stored Cross-Site Scripting Patched CVE-2024-12308 4.4 Dmitrii Ignatyev February 3, 2025
Logo Slider <= 4.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting Patched CVE-2024-10896 6.4 Dmitrii Ignatyev November 7, 2024
Logo Slider <= 4.1.0 - Authenticated (Author+) Stored Cross-Site Scripting Patched CVE-2024-10473 6.4 Dmitrii Ignatyev November 7, 2024
Logo Slider <= 4.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting Patched CVE-2024-5429 6.4 Dmitrii Ignatyev September 26, 2024
Logo Slider <= 3.9.9 - Authenticated (Contributor+) Stored Cross-Site Scripting Patched CVE-2024-3288 6.4 Krugov Artyom May 17, 2024
Logo Slider <= 3.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting Patched CVE-2022-4664 6.4 István Márton December 16, 2022

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation