Lucene search
K

1231 matches found

NVD
NVD
added 2025/09/22 7:16 p.m.3 views

CVE-2025-58652

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themepoints Carousel Ultimate carousel allows Stored XSS.This issue affects Carousel Ultimate: from n/a through = 1.8...

6.5CVSS0.0019EPSS
Exploits0References1
NVD
NVD
added 2025/09/22 7:15 p.m.2 views

CVE-2025-57955

Missing Authorization vulnerability in Plugin Devs Post Carousel Slider for Elementor post-carousel-slider-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post Carousel Slider for Elementor: from n/a through = 1.7.0...

6.5CVSS0.00421EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/22 7:8 p.m.5 views

WordPress Post Carousel Slider for Elementor Plugin <= 1.7.0 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Abu Hurayra in WordPress Plugin Post Carousel Slider for Elementor versions = 1.7.0...

6.5CVSS6.7AI score0.00421EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/09/22 6:41 p.m.5 views

WordPress Carousel Ultimate Plugin <= 1.8 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin Carousel Ultimate versions = 1.8...

6.5CVSS6AI score0.0019EPSS
Exploits0Affected Software1
CVE
CVE
added 2025/09/22 6:24 p.m.7 views

CVE-2025-57955

CVE-2025-57955 describes a Missing Authorization vulnerability in the WordPress plugin Post Carousel Slider for Elementor . Affected version range is listed as “from n/a through 1.7.0” and the CVE entry indicates the vulnerability status is Unpatched . The accompanying CVSS vector (AV:N/AC:L/PR:L...

6.5CVSS5.9AI score0.00421EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/22 6:24 p.m.2 views

CVE-2025-57955 WordPress Post Carousel Slider for Elementor Plugin <= 1.7.0 - Broken Access Control Vulnerability

Missing Authorization vulnerability in Plugin Devs Post Carousel Slider for Elementor post-carousel-slider-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post Carousel Slider for Elementor: from n/a through = 1.7.0...

6.5CVSS5.2AI score0.00421EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/22 6:24 p.m.10 views

CVE-2025-57955 WordPress Post Carousel Slider for Elementor Plugin <= 1.7.0 - Broken Access Control Vulnerability

Missing Authorization vulnerability in Plugin Devs Post Carousel Slider for Elementor post-carousel-slider-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post Carousel Slider for Elementor: from n/a through = 1.7.0...

6.5CVSS0.00421EPSS
Exploits0References1
CVE
CVE
added 2025/09/22 6:23 p.m.11 views

CVE-2025-58652

CVE-2025-58652 affects Themepoints Carousel Ultimate (Carousel Ultimate) for WordPress. The issue is a Stored XSS caused by improper input neutralization during web page generation, impacting versions up to 1.8 (from n/a through 1.8). CVSS 3.1 base score is 6.5 (AV:N, AC:L, PR:L, UI:R, S:C, C:L, ...

6.5CVSS5.9AI score0.0019EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/22 6:23 p.m.1 views

CVE-2025-58652 WordPress Carousel Ultimate Plugin <= 1.8 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themepoints Carousel Ultimate carousel allows Stored XSS.This issue affects Carousel Ultimate: from n/a through = 1.8...

6.5CVSS5.9AI score0.0019EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/22 6:23 p.m.11 views

CVE-2025-58652 WordPress Carousel Ultimate Plugin <= 1.8 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themepoints Carousel Ultimate carousel allows Stored XSS.This issue affects Carousel Ultimate: from n/a through = 1.8...

6.5CVSS0.0019EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/22 12:0 a.m.3 views

PT-2025-38941

Name of the Vulnerable Software and Affected Versions Themepoints Carousel Ultimate versions through 1.8 Description The software contains a flaw related to improper input handling during web page creation, which allows for Stored Cross-site Scripting XSS. This issue enables malicious code...

6.5CVSS6.5AI score0.0019EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/09/22 12:0 a.m.2 views

WordPress plugin Carousel Ultimate 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS5.8AI score0.0019EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/09/22 12:0 a.m.5 views

PT-2025-38805

Name of the Vulnerable Software and Affected Versions Post Carousel Slider for Elementor versions through 1.7.0 Description An authorization issue exists in Post Carousel Slider for Elementor, allowing exploitation due to incorrectly configured access control security levels. Recommendations Upda...

6.5CVSS6.6AI score0.00421EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/09/22 12:0 a.m.5 views

WordPress plugin Post Carousel Slider for Elementor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plug-in. A security...

6.5CVSS6.5AI score0.00421EPSS
Exploits0References1
NVD
NVD
added 2025/09/11 8:15 a.m.16 views

CVE-2025-8481

The Blog Designer For Elementor – Post Slider, Post Carousel, Post Grid plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 1.1.7. This is due to missing or incorrect nonce validation on the bdfeinstallactivaterswpbsonly function. This makes it possible for unauthenticated...

4.3CVSS0.00124EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/09/11 12:0 a.m.4 views

PT-2025-37132

The Blog Designer For Elementor – Post Slider, Post Carousel, Post Grid plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 1.1.7. This is due to missing or incorrect nonce validation on the bdfe install activate rswpbs only function. This makes it possible for...

4.3CVSS5.7AI score0.00124EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/09/11 12:0 a.m.3 views

WordPress plugin Blog Designer For Elementor – Post Slider, Post Carousel, Post Grid 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin Blog Designer For...

4.3CVSS6.5AI score0.00124EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/07 2:33 p.m.16 views

CVE-2025-58816

Missing Authorization vulnerability in Plugin Devs Product Carousel Slider for Elementor ecommerce-product-carousel-slider-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Product Carousel Slider for Elementor: from n/a through = 2.1.3...

3.5CVSS5.9AI score0.00225EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/07 2:32 p.m.2 views

CVE-2025-58820

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themepoints Carousel Ultimate carousel allows Stored XSS.This issue affects Carousel Ultimate: from n/a through = 1.8...

5.9CVSS5.9AI score0.0021EPSS
Exploits0References1
NVD
NVD
added 2025/09/05 2:15 p.m.2 views

CVE-2025-58820

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themepoints Carousel Ultimate carousel allows Stored XSS.This issue affects Carousel Ultimate: from n/a through = 1.8...

5.9CVSS0.0021EPSS
Exploits0References1
Rows per page
Query Builder