2 matches found
CVE-2024-1745 Testimonial Slider < 2.3.7 - Author+ Settings Update
The Testimonial Slider WordPress plugin before 2.3.7 does not properly ensure that a user has the necessary capabilities to edit certain sensitive Testimonial Slider WordPress plugin before 2.3.7 settings, making it possible for users with at least the Author role to edit them...
WordPress Testimonial Slider Plugin < 2.3.7 is vulnerable to Broken Access Control
Software Testimonial Slider Type Plugin Vulnerable versions 2.3.7 Fixed in 2.3.7 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-1745 Patch priority Low CVSS severity Low 2.7 Developer Claim ownership PSID e4275e227f6f Credits Dmitrii Ignatyev Required...