CVE-2026-4076 | felipermendes Slider Bootstrap Carousel Plugin up to 1.0.7 on WordPress Shortcode extract Category cross site scripting

A vulnerability categorized as problematic has been discovered in felipermendes Slider Bootstrap Carousel Plugin up to 1.0.7 on WordPress. This affects the function extract of the component Shortcode Handler. The manipulation of the argument Category results in cross site scripting.

This vulnerability is known as CVE-2026-4076. It is possible to launch the attack remotely. No exploit is available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More