EUVD-2025-18724

Malicious code in bioql PyPI...

EUVD-2023-56206

Malicious code in bioql PyPI...

CVE-2025-5125

The Custom Post Carousels with Owl WordPress plugin before 1.4.12 uses the featherlight library and makes use of the data-featherlight attribute without sanitizing before using it...

CVE-2025-5125

The Custom Post Carousels with Owl WordPress plugin before 1.4.12 uses the featherlight library and makes use of the data-featherlight attribute without sanitizing before using it...

CVE-2025-5125

The Custom Post Carousels with Owl WordPress plugin before 1.4.12 uses the featherlight library and makes use of the data-featherlight attribute without sanitizing before using it...

CVE-2025-5125 Custom Post Carousels with Owl < 1.4.12 - Contributor+ Stored XSS

The Custom Post Carousels with Owl WordPress plugin before 1.4.12 uses the featherlight library and makes use of the data-featherlight attribute without sanitizing before using it...

CVE-2025-5125

The CVE-2025-5125 entry affects the WordPress plugin “Custom Post Carousels with Owl”, specifically versions prior to 1.4.12. The root cause is unsanitized input in the data-featherlight attribute used by the Featherlight library, enabling a Stored XSS condition as described by multiple sources. ...

CVE-2025-5125 Custom Post Carousels with Owl < 1.4.12 - Contributor+ Stored XSS

The Custom Post Carousels with Owl WordPress plugin before 1.4.12 uses the featherlight library and makes use of the data-featherlight attribute without sanitizing before using it...

WordPress plugin Custom Post Carousels with Owl 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A security vulnerability exists in the WordPress Custom Post Carousels with Owl plugin that stems from not cleaning up the data-featherlight attribute. An attacker can exploit t...

CVE-2023-51493

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Howard Ehrenberg Custom Post Carousels with Owl allows Stored XSS.This issue affects Custom Post Carousels with Owl: from n/a through 1.4.6...

CVE-2023-51493

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Howard Ehrenberg Custom Post Carousels with Owl allows Stored XSS.This issue affects Custom Post Carousels with Owl: from n/a through 1.4.6...

CVE-2023-51493

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Howard Ehrenberg Custom Post Carousels with Owl allows Stored XSS.This issue affects Custom Post Carousels with Owl: from n/a through 1.4.6...

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Howard Ehrenberg Custom Post Carousels with Owl allows Stored XSS.This issue affects Custom Post Carousels with Owl: from n/a through 1.4.6...

CVE-2023-51493

CVE-2023-51493 concerns the WordPress plugin Custom Post Carousels with Owl (dd-post-carousel). Affected versions: up to 1.4.6. Issue: improper neutralization of user input during web page generation, enabling a stored cross-site scripting (XSS) vulnerability. Impact per sources: stored XSS; no e...

CVE-2023-51493 WordPress Custom Post Carousels with Owl Plugin <= 1.4.6 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Howard Ehrenberg Custom Post Carousels with Owl allows Stored XSS.This issue affects Custom Post Carousels with Owl: from n/a through 1.4.6...

CVE-2023-51493 WordPress Custom Post Carousels with Owl Plugin <= 1.4.6 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Howard Ehrenberg Custom Post Carousels with Owl allows Stored XSS.This issue affects Custom Post Carousels with Owl: from n/a through 1.4.6...

WordPress Plugin Custom Post Carousels with Owl Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

PT-2024-14152 · Unknown · Custom Post Carousels With Owl

Name of the Vulnerable Software and Affected Versions: Custom Post Carousels with Owl versions 1.4.6 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows stored cross-site scripting XSS. This means that an attacker can inject...

WordPress Custom Post Carousels with Owl Plugin <= 1.4.6 is vulnerable to Cross Site Scripting (XSS)

Software Custom Post Carousels with Owl Type Plugin Vulnerable versions = 1.4.6 Fixed in 1.4.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-51493 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 106e9a571eef Credits Ngô Thiên An ancorn fro...