CVE-2025-31571

Name of the Vulnerable Software and Affected Versions The Logo Slider versions n/a through 1.0.0

Description The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Reflected XSS in The Logo Slider.

Recommendations For versions n/a through 1.0.0, consider disabling any functionality that allows user input to be reflected in web pages until a proper fix is available. Restrict access to sensitive areas of the application to minimize the risk of exploitation. Avoid using user-supplied input in API endpoints, such as /api/v1/slider, until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.