Lucene search
K

4 matches found

Circl
Circl
added 2025/06/26 2:50 a.m.10 views

CVE-2025-5590

creationtimestamp| type| source ---|---|--- 2025-06-26 02:50:46+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19561 2025-06-26 03:29:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsi6p3cxx32q...

8.8CVSS4.8AI score0.00332EPSS
Exploits0References2
CVE
CVE
added 2025/06/26 1:44 a.m.29 views

CVE-2025-5590

CVE-2025-5590 : Owl carousel responsive plugin for WordPress is vulnerable to a time-based SQL Injection via the id parameter in all versions up to and including 1.9. The issue stems from insufficient escaping of the user-supplied id and inadequate preparation of the SQL query, enabling authentic...

8.8CVSS6.9AI score0.00332EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/06/26 1:44 a.m.13 views

CVE-2025-5590 Owl carousel responsive <= 1.9 - Authenticated (Contributor+) SQL Injection via id Parameter

The Owl carousel responsive plugin for WordPress is vulnerable to time-based SQL Injection via the ‘id’ parameter in all versions up to, and including, 1.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it...

8.8CVSS0.00332EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/06/25 11:54 p.m.13 views

WordPress Owl carousel responsive plugin <= 1.9 - Authenticated (Contributor+) SQL Injection via id Parameter vulnerability

Authenticated Contributor+ SQL Injection via id Parameter vulnerability discovered by Peter Thaleikis in WordPress Plugin Owl carousel responsive versions = 1.9...

8.8CVSS7.8AI score0.00332EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder