Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| LambertGroup | Magic Slider | unaffected |
|
No data.
No data.
| Vendor | Product | Confidence | Versions |
|---|---|---|---|
| Lambertgroup | Magic Slider | — | — |
| Wordpress | Wordpress | — | — |
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
Subscriptions
Tracking
Sign in to view the affected projects.
No advisories yet.
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Mon, 26 Jan 2026 23:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
cvssV3_1
|
Fri, 23 Jan 2026 16:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Lambertgroup
Lambertgroup magic Slider Wordpress Wordpress wordpress |
|
| Vendors & Products |
Lambertgroup
Lambertgroup magic Slider Wordpress Wordpress wordpress |
Thu, 22 Jan 2026 23:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in LambertGroup Magic Slider magic_slider allows Reflected XSS.This issue affects Magic Slider: from n/a through <= 2.2. | |
| Title | WordPress Magic Slider plugin <= 2.2 - Reflected Cross Site Scripting (XSS) vulnerability | |
| Weaknesses | CWE-79 | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-01-26T22:20:37.450Z
Reserved: 2025-05-15T17:54:23.205Z
Link: CVE-2025-48094
Vulnrichment
Updated: 2026-01-26T22:01:08.185Z
NVD
Status : Awaiting Analysis
Published: 2026-01-22T17:15:55.150
Modified: 2026-01-26T23:15:55.630
Link: CVE-2025-48094
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-01-23T16:32:17Z