4 matches found
CVE-2025-5590
creationtimestamp| type| source ---|---|--- 2025-06-26 02:50:46+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19561 2025-06-26 03:29:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsi6p3cxx32q...
CVE-2025-5590
CVE-2025-5590 : Owl carousel responsive plugin for WordPress is vulnerable to a time-based SQL Injection via the id parameter in all versions up to and including 1.9. The issue stems from insufficient escaping of the user-supplied id and inadequate preparation of the SQL query, enabling authentic...
CVE-2025-5590 Owl carousel responsive <= 1.9 - Authenticated (Contributor+) SQL Injection via id Parameter
The Owl carousel responsive plugin for WordPress is vulnerable to time-based SQL Injection via the ‘id’ parameter in all versions up to, and including, 1.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it...
WordPress Owl carousel responsive plugin <= 1.9 - Authenticated (Contributor+) SQL Injection via id Parameter vulnerability
Authenticated Contributor+ SQL Injection via id Parameter vulnerability discovered by Peter Thaleikis in WordPress Plugin Owl carousel responsive versions = 1.9...