Lucene search
PRIOn knowledge basePRION:CVE-2021-24913HistoryFeb 28, 2022 - 9:15 a.m.
Cross site request forgery (csrf)
2022-02-2809:15:00
PRIOn knowledge base
www.prio-n.com
2
The Logo Showcase with Slick Slider WordPress plugin before 2.0.1 does not have CSRF check in the lswss_save_attachment_data AJAX action, allowing attackers to make a logged in high privilege user, change title, description, alt text, and URL of arbitrary uploaded media.
| CPE | Name | Operator | Version |
|---|---|---|---|
| logo_showcase_with_slick_slider | lt | 2.0.1 |
Related
wpvulndb
wpvulndb
cve
cve
CVE-2021-24913
2022-02-28 09:15:08
patchstack
patchstack
nvd
nvd
CVE-2021-24913
2022-02-28 09:15:08
wpexploit
wpexploit
cnvd
cnvd
WordPress Slick Slider plugin cross-site request forgery vulnerability
2022-03-02 00:00:00
cvelist
cvelist