CVE-2025-4682 | Essential Blocks Plugin up to 5.4.0 on WordPress Slider Widget/Post Carousel Widget cross site scripting

Inserito da Angelo Barbosa | Mag 26, 2025 | CVE

A vulnerability was found in Essential Blocks Plugin up to 5.4.0 on WordPress. It has been declared as problematic. This vulnerability affects unknown code of the component Slider Widget/Post Carousel Widget. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2025-4682. The attack can be initiated remotely. There is no exploit available.

CVE-2025-4682 | Essential Blocks Plugin up to 5.4.0 on WordPress Slider Widget/Post Carousel Widget cross site scripting

Post correlati

CVE-2024-5064 | PHPGurukul Online Course Registration System 3.1 news-details.php nid sql injection

CVE-2024-23724 | Ghost up to 5.76.0 SVG Profile Picture cross site scripting

CVE-2024-5412 | Zyxel VMG8825-T50K 5.50(ABOM.8)C0 HTTP Request libclinkc buffer overflow

CVE-2024-11501 | Gallery Plugin up to 1.3 on WordPress code injection