CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 1CVE-2021-24913 – Logo Showcase with Slick Slider < 2.0.1 - Arbitrary Media Title/Description/Alt Text/URL Update via CSRF
https://notcve.org/view.php?id=CVE-2021-24913
The Logo Showcase with Slick Slider WordPress plugin before 2.0.1 does not have CSRF check in the lswss_save_attachment_data AJAX action, allowing attackers to make a logged in high privilege user, change title, description, alt text, and URL of arbitrary uploaded media. El plugin Logo Showcase with Slick Slider de WordPress versiones anteriores a 2.0.1, no presenta una comprobación de tipo CSRF en la acción AJAX lswss_save_attachment_data, permitiendo a atacantes hacer que un usuario con altos privilegios inicie una sesión, cambie el título, la descripción, el texto alt y la URL de medios cargados arbitrariamente. The Logo Showcase with Slick Slider plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.0. This is due to missing or incorrect nonce validation on the lswss_save_attachment_data AJAX action. This makes it possible for unauthenticated attackers to change the title, description, alt text, and URL of arbitrary uploaded media via a forged request granted they can trick a site administrator into performing an action such as clicking on a link. • https://plugins.trac.wordpress.org/changeset/2669404 https://wpscan.com/vulnerability/2f499945-1924-49f0-ad6e-9192273a5c05 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 1CVE-2021-24730 – Logo Showcase with Slick Slider < 1.2.5 - Subscriber+ Arbitrary Media Title/Description/Alt Text/URL Update
https://notcve.org/view.php?id=CVE-2021-24730
The Logo Showcase with Slick Slider WordPress plugin before 1.2.5 does not have CSRF and authorisation checks in the lswss_save_attachment_data AJAX action, allowing any authenticated users, such as Subscriber, to change title, description, alt text, and URL of arbitrary uploaded media. El plugin Logo Showcase with Slick Slider de WordPress versiones anteriores a 1.2.5 no dispone de comprobaciones de CSRF y de autorización en la acción AJAX lswss_save_attachment_data, permitiendo a cualquier usuario autenticado, como el suscriptor, cambiar el título, la descripción, el texto alternativo y la URL de medios subidos arbitrariamente. • https://wpscan.com/vulnerability/d5534ff9-c4af-46b7-8852-0f3dfd644855 • CWE-352: Cross-Site Request Forgery (CSRF) CWE-862: Missing Authorization •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2021-24729 – Logo Showcase with Slick Slider < 1.2.4 - Author+ Stored Cross Site Scripting
https://notcve.org/view.php?id=CVE-2021-24729
The Logo Showcase with Slick Slider WordPress plugin before 1.2.4 does not sanitise the Grid Settings, which could allow users with a role as low as Author to perform stored Cross-Site Scripting attacks via post metadata of Grid logo showcase. El plugin Logo Showcase with Slick Slider de WordPress versiones anteriores a 1.2.4, no sanea la configuración de la cuadrícula, que podría permitir a usuarios con un rol tan bajo como el de autor llevar a cabo ataques de tipo Cross-Site Scripting almacenados por medio de los metadatos de la cuadrícula de logotipos • https://wpscan.com/vulnerability/5d70818e-730d-40c9-a2db-652052a5fd5c • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •