CVE-2025-31535

Name of the Vulnerable Software and Affected Versions Simple Owl Carousel versions 1.1.1 and earlier

Description The issue is related to improper neutralization of input during web page generation, which allows for DOM-Based Cross-site Scripting (XSS). This means that an attacker could potentially inject malicious code into a website using the Simple Owl Carousel, affecting the DOM (Document Object Model) of the page.

Recommendations For Simple Owl Carousel versions 1.1.1 and earlier, update to a version that fixes this issue, if available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.