WP Smart Flexslider, CVE-2025-49955

CVE, Research URL: CVE-2025-49955
Home page URL: Security reports for WP Smart Flexslider
Application: WP Smart Flexslider
Published on: Oct 22, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Rajan Vijayan WP Smart Flexslider wp-smart-flexslider allows Reflected XSS.This issue affects WP Smart Flexslider: from n/a through <= 2.5.
Affected versions: max 2.5.
Status: vulnerable