Vulnerabilities and security researches forrs-wp-books-showcase rs-wp-books-showcase

May 18, 2025

CVE, Research URL: CVE-2025-48119
Home page URL: Security reports for RS WP Book ShowCase – WordPress Book Gallery Plugin (Book Slider, Book Carousel, Book Grid, Book List))
Application: RS WP Book ShowCase – WordPress Book Gallery Plugin (Book Slider, Book Carousel, Book Grid, Book List))
Date: May 16, 2025
Research Description: Improper Control of Generation of Code ('Code Injection') vulnerability in RS WP THEMES RS WP Book Showcase allows Code Injection. This issue affects RS WP Book Showcase: from n/a through 6.7.41.
Affected versions: max 6.7.41.
Status: vulnerable

May 09, 2025

CVE, Research URL: CVE-2025-47679
Home page URL: Security reports for RS WP Book ShowCase – WordPress Book Gallery Plugin (Book Slider, Book Carousel, Book Grid, Book List))
Application: RS WP Book ShowCase – WordPress Book Gallery Plugin (Book Slider, Book Carousel, Book Grid, Book List))
Date: May 07, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RS WP THEMES RS WP Book Showcase allows DOM-Based XSS. This issue affects RS WP Book Showcase: from n/a through 6.7.40.
Affected versions: max 6.7.40.
Status: vulnerable