Medium severity4.8NVD Advisory· Published Jun 20, 2025· Updated Jun 17, 2026
CVE-2025-5125
CVE-2025-5125
Description
The Custom Post Carousels with Owl WordPress plugin before 1.4.12 uses the featherlight library and makes use of the data-featherlight attribute without sanitizing before using it.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<1.4.12+ 1 more
- (no CPE)range: <1.4.12
- (no CPE)
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/aaf9e3f8-b312-432d-a635-6fe89ff8d13f/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.