Latest

Configuring Really Simple Security with WP-CLI

Input validation vulnerability in Carousel Horizontal Posts Content Slider 3.3.2

CVE-2026-22347

Severity: medium-risk
Status: Open
Publication: December 30, 2025

The Carousel Horizontal Posts Content Slider plugin for WordPress has a security issue known as Stored Cross-Site Scripting. This means that versions up to 3.3.2 are at risk because they do not properly filter and protect user input. This vulnerability allows attackers who are logged in with contributor-level access or higher to add malicious code to website pages. This code will then run whenever a user visits the infected page.

Detected in:

Carousel Horizontal Posts Content Slider open vulnerable versions: >= * <= 3.3.2

Open source

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Incorrect?

Is this information incorrect? Please leave us a message.

Latest

Configuring Really Simple Security with WP-CLI

Input validation vulnerability in Carousel Horizontal Posts Content Slider 3.3.2

Detected in:

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

Get Started

About

Popular articles

Latest

Passkeys: no need for Limit Login Attempts?

Configuring Really Simple Security with WP-CLI

Input validation vulnerability in Carousel Horizontal Posts Content Slider 3.3.2

Detected in: