4 matches found
CVE-2025-23933
creationtimestamp| type| source ---|---|--- 2025-01-16 21:20:35+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7iqfk7s2h 2025-01-16 22:56:16+00:00| seen| https://t.me/cvedetector/15650...
CVE-2025-23933 WordPress WpF Ultimate Carousel plugin <= 1.0.11 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpfreeware WpF Ultimate Carousel wpf-ultimate-carousel allows Stored XSS.This issue affects WpF Ultimate Carousel: from n/a through = 1.0.11...
CVE-2025-23933
CVE-2025-23933 affects WpF Ultimate Carousel (WpFreeware) up to version 1.0.11 with Stored XSS due to improper input neutralization during web page generation. Public sources (Red Hat and Wordfence) confirm this vulnerability exists and is currently Unpatched; no exploitation details are provided...
CVE-2025-23933 WordPress WpF Ultimate Carousel plugin <= 1.0.11 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpfreeware WpF Ultimate Carousel wpf-ultimate-carousel allows Stored XSS.This issue affects WpF Ultimate Carousel: from n/a through = 1.0.11...