CVE-2025-14721

Name of the Vulnerable Software and Affected Versions Responsive and Swipe slider plugin for WordPress versions prior to 1.0.3

Description The plugin is susceptible to Stored Cross-Site Scripting due to inadequate input sanitization and output escaping of user-supplied attributes within the rsSlider shortcode. This allows authenticated attackers with contributor-level access or higher to inject malicious web scripts into pages. When a user accesses an affected page, the injected scripts will execute.

Recommendations Update the plugin to version 1.0.3 or later.