Nixpkgs Security Tracker

Login with GitHub

Suggestion detail

Dismissed
(browse all)
Permalink CVE-2025-58652
updated 3 months ago by @mweinelt Activity log
  • Created automatic suggestion 4 months, 1 week ago
  • @mweinelt removed package haskellPackages.data-carousel 3 months ago
  • @mweinelt dismissed 3 months ago
WordPress Carousel Ultimate Plugin <= 1.8 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themepoints Carousel Ultimate allows Stored XSS. This issue affects Carousel Ultimate: from n/a through 1.8.

Affected products

carousel
  • =<1.8