cleantalk
Vulnerabilities and Security Researches

GB Gallery Slideshow, CVE-2025-32649

CVE, Research URL

CVE-2025-32649

Home page URL

Security reports for GB Gallery Slideshow

Application

GB Gallery Slideshow

Published on
Apr 17, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in gb-plugins GB Gallery Slideshow allows Reflected XSS. This issue affects GB Gallery Slideshow: from n/a through 1.3.
Affected versions
Min -, max 1.3.
Status
vulnerable
Previous vulnerability researches
DirectoryPress Frontend (CVE-2024-10581) , Feb 16, 2025
DirectoryPress – Business Directory And Classified Ad Listing (CVE-2024-49633) , Jan 09, 2025
DirectoryPress – Business Directory And Classified Ad Listing (CVE-2023-37967) , Jun 10, 2024
DirectoryPress – Business Directory And Classified Ad Listing (CVE-2024-10584) , Dec 25, 2024
DirectoryPress – Business Directory And Classified Ad Listing (CVE-2024-38755) , Jul 15, 2024
New vulnerability
Cost Calculator Builder (CVE-2025-39587) , Apr 19, 2025
Klarna Checkout for WooCommerce (CVE-2024-13925) , Apr 19, 2025
WordPress Button Plugin MaxButtons (CVE-2025-39444) , Apr 19, 2025
Course Booking System (CVE-2025-32508) , Apr 19, 2025
Ultimate Store Kit Elementor Addons, Woocommerce Builder, EDD Builder, Elementor Store Builder, Product Grid, Product Table, Wo (CVE-2025-39588) , Apr 19, 2025