cleantalk
Vulnerabilities and Security Researches

Carousel-of-post-images, CVE-2025-46536

CVE, Research URL

CVE-2025-46536

Home page URL

Security reports for Carousel-of-post-images

Application

Carousel-of-post-images

Published on
Apr 24, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RichardHarrison Carousel-of-post-images allows DOM-Based XSS. This issue affects Carousel-of-post-images: from n/a through 1.07.
Affected versions
Min -, max 1.07.
Status
vulnerable
Previous vulnerability researches
Theme Switcha – Easily Switch Themes for Development and Testing (CVE-2023-5614) , Jun 07, 2024
Theme Switcha – Easily Switch Themes for Development and Testing (CVE-2025-46239) , Apr 23, 2025
New vulnerability
Best Quiz Plugin for WordPress: WP Quiz (CVE-2025-46482) , Apr 27, 2025
Database Toolset (CVE-2025-3065) , Apr 27, 2025
Control Listings – Classifieds Ads Directory Portal Manager (CVE-2025-46234) , Apr 26, 2025
WordPress Tooltip (CVE-2025-46532) , Apr 26, 2025
Business Contact Widget (CVE-2025-46529) , Apr 26, 2025