CVE-2026-28101

Name of the Vulnerable Software and Affected Versions UberSlider versions prior to 2.3

Description The software contains a flaw related to improper input handling during web page generation, which allows for Reflected Cross-site Scripting (XSS). The vulnerable component is UberSlider MouseInteraction, specifically the uberSlider mouseinteraction functionality. The issue allows an attacker to inject malicious scripts into web pages viewed by other users.

Recommendations Update UberSlider to a version newer than 2.3.