2 matches found
CVE-2025-53302
Missing Authorization vulnerability in Anton Shevchuk Constructor allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Constructor: from n/a through 1.6.5...
PT-2024-36821 · WordPress · Universal Slider
Name of the Vulnerable Software and Affected Versions: Universal Slider plugin for WordPress versions up to, and including, 1.6.5 Description: The issue allows authenticated attackers with Contributor-level access and above to inject a PHP Object via deserialization of untrusted input in the fsl...