5 matches found
CVE-2025-28906
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Thiago S.F. Skitter Slideshow wp-skitter-slideshow allows Stored XSS.This issue affects Skitter Slideshow: from n/a through = 2.5.2...
CVE-2025-28906
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Thiago S.F. Skitter Slideshow wp-skitter-slideshow allows Stored XSS.This issue affects Skitter Slideshow: from n/a through = 2.5.2...
CVE-2025-28906 WordPress Skitter Slideshow plugin <= 2.5.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Thiago S.F. Skitter Slideshow wp-skitter-slideshow allows Stored XSS.This issue affects Skitter Slideshow: from n/a through = 2.5.2...
CVE-2025-28906 WordPress Skitter Slideshow plugin <= 2.5.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Thiago S.F. Skitter Slideshow wp-skitter-slideshow allows Stored XSS.This issue affects Skitter Slideshow: from n/a through = 2.5.2...
CVE-2025-28906
CVE-2025-28906 concerns the WordPress plugin Skitter Slideshow (versions up to and including 2.5.2). The issue is a Stored XSS caused by insufficient input sanitization and output escaping. Exploitation requires authenticated administrator+ access, enabling injection of stored scripts that could ...