CVE-2025-49956

Name of the Vulnerable Software and Affected Versions Anandaraj Balu Fade Slider versions through 2.5

Description The software contains a flaw due to improper handling of user-supplied data when creating web pages, leading to a potential Reflected Cross-Site Scripting (XSS) condition. This allows an attacker to inject malicious scripts into web pages viewed by other users. The affected component is the fade-slider.

Recommendations Update to a version later than 2.5. At the moment, there is no information about a newer version that contains a fix for this vulnerability.