VYPR

B Carousel Block

by WordPress

Source repositories

CVEs (1)

  • CVE-2025-12388MedNov 5, 2025
    risk 0.35cvss 6.4epss 0.00

    The B Carousel Block – Responsive Image and Content Carousel plugin for WordPress is vulnerable to Server-Side Request Forgery in versions up to, and including, 1.1.5. This is due to the plugin not validating user-supplied URLs before passing them to the wp_remote_request()…