cleantalk
Vulnerabilities and Security Researches

Skitter Slideshow, CVE-2025-28906

CVE, Research URL

CVE-2025-28906

Home page URL

Security reports for Skitter Slideshow

Application

Skitter Slideshow

Published on
Mar 12, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Thiago S.F. Skitter Slideshow allows Stored XSS. This issue affects Skitter Slideshow: from n/a through 2.5.2.
Affected versions
Min -, max 2.5.2.
Status
vulnerable
Previous vulnerability researches
Qubely – Advanced Gutenberg Blocks (CVE-2024-9601) , Feb 19, 2025
Qubely – Advanced Gutenberg Blocks (CVE-2024-13228) , Mar 11, 2025
Qubely – Advanced Gutenberg Blocks (CVE-2025-26767) , Feb 18, 2025
Qubely – Advanced Gutenberg Blocks (CVE-2021-24916) , Jun 07, 2024
Qubely – Advanced Gutenberg Blocks (CVE-2021-25013) , Jun 07, 2024
New vulnerability
Block Spam By Math Reloaded (CVE-2025-28872) , Mar 13, 2025
Block Spam By Math Reloaded (CVE-2025-28871) , Mar 13, 2025
Social Share Buttons, Social Sharing Icons, Click to Tweet — Social Media Plugin by Social Snap (CVE-2024-13615) , Mar 13, 2025
Easy Image Display (CVE-2025-28919) , Mar 13, 2025
Custom top bar (CVE-2025-28895) , Mar 13, 2025