4 matches found
CVE-2025-2083 Logo Carousel Gutenberg Block <= 2.1.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via sliderId Parameter
The Logo Carousel Gutenberg Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘sliderId’ parameter in all versions up to, and including, 2.1.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
CVE-2025-2083
CVE-2025-2083 (Logo Carousel Gutenberg Block, WordPress) : The WordPress plugin Logo Carousel Gutenberg Block (versions
CVE-2025-2083 Logo Carousel Gutenberg Block <= 2.1.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via sliderId Parameter
The Logo Carousel Gutenberg Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘sliderId’ parameter in all versions up to, and including, 2.1.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
WordPress Logo Carousel Gutenberg Block plugin <= 2.1.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via sliderId Parameter vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via sliderId Parameter vulnerability discovered by Peter Thaleikis in WordPress Plugin Logo Carousel Gutenberg Block versions = 2.1.6...