CVE-2025-53308 – Gopi_plus Image Slider Stored XSS CSRF

June 27, 2025

CVE ID : CVE-2025-53308

Published : June 27, 2025, 2:15 p.m. | 55 minutes ago

Description : Cross-Site Request Forgery (CSRF) vulnerability in gopi_plus Image Slider With Description allows Stored XSS. This issue affects Image Slider With Description: from n/a through 9.2.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-53309 – ZealousWeb Contact Form 7 Information Disclosure

Next Article CVE-2025-53306 – Lucidcrew WP Forum Server SQL Injection

How AI further empowers value stream management

12 Top ReactJS Development Companies in 2025

Not sure where to go with AI? Here’s your roadmap.

This week in AI dev tools: A2A donated to Linux Foundation, OpenAI adds Deep Research to API, and more (June 27, 2025)

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

After 14 years, Monster Hunter Wilds is bringing back underwater combat alongside “Lagiacrus” and another familiar monster — the impossible has happened

OpenAI may prematurely declare AGI to cut ties with Microsoft — despite Sam Altman admitting today’s tech isn’t built for it

Forget YouTube’s ad blocker war — this Google AI Overviews clone might finally sell me on the $14/month Premium subscription

Say hello to ECMAScript 2025

Say hello to ECMAScript 2025

Ecma International approves ECMAScript 2025: What’s new?

Building Together: PRFT Colleagues Volunteer with Atlanta Habitat for Humanity

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

After 14 years, Monster Hunter Wilds is bringing back underwater combat alongside “Lagiacrus” and another familiar monster — the impossible has happened

OpenAI may prematurely declare AGI to cut ties with Microsoft — despite Sam Altman admitting today’s tech isn’t built for it

CVE-2025-53308 – Gopi_plus Image Slider Stored XSS CSRF

CVE-2023-28902 – Skoda MIB3 Infotainment Unit Integer Underflow Denial-of-Service Vulnerability

CVE-2023-28906 – Skoda MIB3 Infotainment Command Injection Vulnerability

CVE-2025-4577 – Smash Balloon Social Post Feed – WordPress Stored Cross-Site Scripting Vulnerability

How to use File History on Windows 11 to protect your documents with backups

CVE-2025-4991 – “3DEXPERIENCE Collaborative Industry Innovator Stored XSS”

CVE-2025-6414 – PHPGurukul Art Gallery Management System SQL Injection Vulnerability

Katy Perry Didn’t Attend the Met Gala, But AI Made Her the Star of the Night

CVE-2025-3998 – CodeAstro Membership Management System SQL Injection Vulnerability

Redis Vulnerability Exposes Servers to Denial-of-Service Attacks

Scotland launches DeepTech AI to nurture postgraduate founders

CVE-2025-53308 – Gopi_plus Image Slider Stored XSS CSRF

Related Posts