CVE-2025-23977

Cross-Site Request Forgery CSRF vulnerability in Bhaskar Dhote Post Carousel Slider post-carousel-slider allows Stored XSS.This issue affects Post Carousel Slider: from n/a through = 2.0.1...

EUVD-2025-30710

Malicious code in bioql PyPI...

EUVD-2025-27936

Malicious code in bioql PyPI...

EUVD-2025-3578

Malicious code in bioql PyPI...

CVE-2025-57955

Missing Authorization vulnerability in Plugin Devs Post Carousel Slider for Elementor post-carousel-slider-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post Carousel Slider for Elementor: from n/a through = 1.7.0...

CVE-2025-57955

Missing Authorization vulnerability in Plugin Devs Post Carousel Slider for Elementor post-carousel-slider-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post Carousel Slider for Elementor: from n/a through = 1.7.0...

WordPress Post Carousel Slider for Elementor Plugin <= 1.7.0 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Abu Hurayra in WordPress Plugin Post Carousel Slider for Elementor versions = 1.7.0...

CVE-2025-57955 WordPress Post Carousel Slider for Elementor Plugin <= 1.7.0 - Broken Access Control Vulnerability

Missing Authorization vulnerability in Plugin Devs Post Carousel Slider for Elementor post-carousel-slider-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post Carousel Slider for Elementor: from n/a through = 1.7.0...

CVE-2025-57955 WordPress Post Carousel Slider for Elementor Plugin <= 1.7.0 - Broken Access Control Vulnerability

Missing Authorization vulnerability in Plugin Devs Post Carousel Slider for Elementor post-carousel-slider-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post Carousel Slider for Elementor: from n/a through = 1.7.0...

CVE-2025-57955

CVE-2025-57955 describes a Missing Authorization vulnerability in the WordPress plugin Post Carousel Slider for Elementor . Affected version range is listed as “from n/a through 1.7.0” and the CVE entry indicates the vulnerability status is Unpatched . The accompanying CVSS vector (AV:N/AC:L/PR:L...

PT-2025-38805

Name of the Vulnerable Software and Affected Versions Post Carousel Slider for Elementor versions through 1.7.0 Description An authorization issue exists in Post Carousel Slider for Elementor, allowing exploitation due to incorrectly configured access control security levels. Recommendations Upda...

WordPress plugin Post Carousel Slider for Elementor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plug-in. A security...

CVE-2025-3863

The Post Carousel Slider for Elementor plugin for WordPress is vulnerable to improper authorization due to a missing capability check on the processwbelpspromoform function in all versions up to, and including, 1.6.0. This makes it possible for authenticated attackers, with Subscriber-level acces...

CVE-2025-3863

CVE-2025-3863 affects the WordPress plugin Post Carousel Slider for Elementor . The vulnerability is due to a missing capability check in the function process_wbelps_promo_form() across versions up to 1.6.0. This enables authenticated attackers with Subscriber-level access and above to trigger th...

CVE-2025-3863 Post Carousel Slider for Elementor <= 1.6.0 - Authenticated (Subscriber+) Missing Authorization via process_wbelps_promo_form Function

The Post Carousel Slider for Elementor plugin for WordPress is vulnerable to improper authorization due to a missing capability check on the processwbelpspromoform function in all versions up to, and including, 1.6.0. This makes it possible for authenticated attackers, with Subscriber-level acces...

WordPress plugin Post Carousel Slider for Elementor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

CVE-2024-53749

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Plugin Devs Post Carousel Slider for Elementor post-carousel-slider-for-elementor allows Stored XSS.This issue affects Post Carousel Slider for Elementor: from n/a through = 1.5.0...

CVE-2025-23977

Cross-Site Request Forgery CSRF vulnerability in Bhaskar Dhote Post Carousel Slider post-carousel-slider allows Stored XSS.This issue affects Post Carousel Slider: from n/a through = 2.0.1...

CVE-2025-23977 WordPress Post Carousel Slider plugin <= 2.0.1 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Bhaskar Dhote Post Carousel Slider post-carousel-slider allows Stored XSS.This issue affects Post Carousel Slider: from n/a through = 2.0.1...

CVE-2025-23977

CVE-2025-23977 is a CSRF-to-Stored XSS vulnerability affecting the WordPress plugin “Post Carousel Slider” up to version 2.0.1. Connected sources (Red Hat, CIRCL, CVE listings, Patchstack, and vendor reports) corroborate that the issue is a Cross-Site Request Forgery that enables stored XSS in th...