exploitDog

GHSA-f6jx-7qrr-8hv7

Опубликовано: 20 июн. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 4.8

Описание

The Custom Post Carousels with Owl WordPress plugin before 1.4.12 uses the featherlight library and makes use of the data-featherlight attribute without sanitizing before using it.

The Custom Post Carousels with Owl WordPress plugin before 1.4.12 uses the featherlight library and makes use of the data-featherlight attribute without sanitizing before using it.

Ссылки

EPSS

Процентиль: 9%

0.00031

Низкий

4.8 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-5125

CVSS3: 4.8

nvd

8 месяцев назад

The Custom Post Carousels with Owl WordPress plugin before 1.4.12 uses the featherlight library and makes use of the data-featherlight attribute without sanitizing before using it.

EPSS

Процентиль: 9%

0.00031

Низкий

4.8 Medium

CVSS3

CVE ID

Дефекты

CWE-79