cleantalk
Vulnerabilities and Security Researches

WEN Logo Slider, CVE-2025-62127

CVE, Research URL

CVE-2025-62127

Home page URL

Security reports for WEN Logo Slider

Application

WEN Logo Slider

Published on
May 07, 2026
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WEN Themes WEN Logo Slider allows DOM-Based XSS. This issue affects WEN Logo Slider: from n/a through 3.4.0.
Affected versions
max 3.5.
Status
vulnerable
Previous vulnerability researches
NMR Strava activities (CVE-2026-5341) , May 10, 2026
NMR Strava activities (CVE-2024-51603) , Nov 04, 2024
New vulnerability
Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post Carousel, Particles, Sliders, Chart) (CVE-2026-7475) , May 10, 2026
Auto Affiliate Links (CVE-2026-7330) , May 10, 2026
NMR Strava activities (CVE-2026-5341) , May 10, 2026
WEN Logo Slider (CVE-2025-62127) , May 09, 2026
Bus Ticket Booking with Seat Reservation – WpBusTicketly | WordPress plugin (CVE-2025-66105) , May 09, 2026