Lucene search
K

1230 matches found

CVE
CVE
added 2026/03/21 3:26 a.m.7 views

CVE-2026-1275

CVE-2026-1275 concerns the WordPress plugin Multi Post Carousel by Category and its vulnerability to a Stored Cross-Site Scripting (XSS) via the slides shortcode attribute in all versions up to 1.4. The root cause is insufficient input sanitization and output escaping in the function handling the...

6.4CVSS6AI score0.00235EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/21 12:0 a.m.7 views

PT-2026-26803

The Multi Post Carousel by Category plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'slides' shortcode attribute in all versions up to, and including, 1.4. This is due to insufficient input sanitization and output escaping on the user-supplied 'slides' parameter in the...

6.4CVSS6AI score0.00235EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/06 7:55 a.m.7 views

CVE-2026-27361

Missing Authorization vulnerability in WebCodingPlace Responsive Posts Carousel Pro responsive-posts-carousel-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Responsive Posts Carousel Pro: from n/a through = 15.1...

7.5CVSS5.8AI score0.00312EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/05 6:30 a.m.5 views

EUVD-2026-9623

Missing Authorization vulnerability in WebCodingPlace Responsive Posts Carousel Pro responsive-posts-carousel-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Responsive Posts Carousel Pro: from n/a through = 15.1...

5.9AI score0.00312EPSS
Exploits0References2
NVD
NVD
added 2026/03/05 6:16 a.m.10 views

CVE-2026-27361

Missing Authorization vulnerability in WebCodingPlace Responsive Posts Carousel Pro responsive-posts-carousel-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Responsive Posts Carousel Pro: from n/a through = 15.1...

7.5CVSS0.00312EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/05 5:53 a.m.2 views

CVE-2026-27361

Missing Authorization vulnerability in WebCodingPlace Responsive Posts Carousel Pro responsive-posts-carousel-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Responsive Posts Carousel Pro: from n/a through = 15.1...

5.9AI score0.00312EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/05 5:53 a.m.4 views

CVE-2026-27361 WordPress Responsive Posts Carousel Pro plugin <= 15.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in WebCodingPlace Responsive Posts Carousel Pro responsive-posts-carousel-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Responsive Posts Carousel Pro: from n/a through = 15.1...

7.5CVSS5.8AI score0.00312EPSS
Exploits0References1
CVE
CVE
added 2026/03/05 5:53 a.m.12 views

CVE-2026-27361

CVE-2026-27361 is a missing/broken authorization vulnerability in the WordPress plugin Responsive Posts Carousel Pro (versions up to 15.1). Public data indicates an exploitable misconfiguration of access control, allowing unauthorized access to protected functionality or data. The CVSSv3.1 base s...

7.5CVSS5.9AI score0.00312EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/05 5:53 a.m.33 views

CVE-2026-27361 WordPress Responsive Posts Carousel Pro plugin <= 15.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in WebCodingPlace Responsive Posts Carousel Pro responsive-posts-carousel-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Responsive Posts Carousel Pro: from n/a through = 15.1...

7.5CVSS0.00312EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/05 12:0 a.m.10 views

PT-2026-23244

Missing Authorization vulnerability in WebCodingPlace Responsive Posts Carousel Pro responsive-posts-carousel-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Responsive Posts Carousel Pro: from n/a through = 15.1...

5.9AI score0.00312EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/05 12:0 a.m.11 views

WordPress plugin Responsive Posts Carousel Pro 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

7.5CVSS5.8AI score0.00312EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/02/25 7:42 a.m.7 views

WordPress Responsive Posts Carousel Pro plugin <= 15.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin Responsive Posts Carousel Pro versions = 15.1...

7.5CVSS5.9AI score0.00312EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/02/15 7:10 a.m.13 views

CVE-2026-1988

The Flexi Product Slider and Grid for WooCommerce plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.0.5 via the flexipsgcarousel shortcode. This is due to the theme parameter being directly concatenated into a file path without proper sanitization ...

7.5CVSS5.9AI score0.00765EPSS
Exploits0References1
NVD
NVD
added 2026/02/14 7:16 a.m.5 views

CVE-2026-1988

The Flexi Product Slider and Grid for WooCommerce plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.0.5 via the flexipsgcarousel shortcode. This is due to the theme parameter being directly concatenated into a file path without proper sanitization ...

7.5CVSS0.00765EPSS
Exploits0References5
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/03 7:27 a.m.8 views

Malicious code in react-responsive-carousel-v4 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 544d7ca19589218beb2b384a9e4e1ce7f64b130015ea62978f81adc7c6be5934 The package react-responsive-carousel-v4 was found to contain malicious code. Source: ghsa-malware...

5.4AI score
Exploits0References1
OSV
OSV
added 2026/02/03 7:27 a.m.6 views

MAL-2026-684 Malicious code in react-responsive-carousel-v4 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 544d7ca19589218beb2b384a9e4e1ce7f64b130015ea62978f81adc7c6be5934 The package react-responsive-carousel-v4 was found to contain malicious code. Source: ghsa-malware...

5.5AI score
Exploits0References1
Patchstack
Patchstack
added 2026/02/02 8:37 p.m.9 views

WordPress Elementor Addons by Livemesh plugin <= 8.3.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Posts Carousel Widget vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Posts Carousel Widget vulnerability discovered by RandomRoot in WordPress Plugin Livemesh Addons for Elementor versions = 8.3.4...

6.4CVSS8.3AI score0.00427EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/02 9:22 a.m.7 views

WordPress Testimonial Carousel For Elementor plugin <= 10.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by stealthcopter in WordPress Plugin Testimonial Carousel For Elementor versions = 10.1.1...

6.4CVSS5.2AI score0.00413EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/02 8:8 a.m.8 views

WordPress Tutor LMS Elementor Addons plugin <= 2.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Course Carousel Widget vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Course Carousel Widget vulnerability discovered by wesley wcraft in WordPress Plugin Tutor LMS Elementor Addons versions = 2.1.4...

6.4CVSS5.3AI score0.00323EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/23 9:15 p.m.7 views

CVE-2026-22388

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Imran Emu Owl Carousel WP owl-carousel-wp allows Stored XSS.This issue affects Owl Carousel WP: from n/a through = 2.2.2...

5.9CVSS5.4AI score0.00218EPSS
Exploits0References1
Rows per page
Query Builder