Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
infornweb logo showcase with slick slider vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2021-24913
The Logo Showcase with Slick Slider WordPress plugin prior to 2.0.1 does not have CSRF check in the lswss_save_attachment_data AJAX action, allowing malicious users to make a logged in high privilege user, change title, description, alt text, and URL of arbitrary uploaded media.
Infornweb Logo Showcase With Slick Slider
5.4
CVSSv3
CVE-2021-24729
The Logo Showcase with Slick Slider WordPress plugin prior to 1.2.4 does not sanitise the Grid Settings, which could allow users with a role as low as Author to perform stored Cross-Site Scripting attacks via post metadata of Grid logo showcase.
Infornweb Logo Showcase With Slick Slider
4.3
CVSSv3
CVE-2021-24730
The Logo Showcase with Slick Slider WordPress plugin prior to 1.2.5 does not have CSRF and authorisation checks in the lswss_save_attachment_data AJAX action, allowing any authenticated users, such as Subscriber, to change title, description, alt text, and URL of arbitrary upload...
Infornweb Logo Showcase With Slick Slider
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started