2 matches found
CVE-2023-51530
CVE-2023-51530 describes a Cross-Site Request Forgery (CSRF) vulnerability in the GS Logo Slider plugins (Logo Slider – Logo Showcase, Logo Carousel, Logo Gallery and Client Logo Presentation) affecting versions up to 3.5.1. The CVE entry and related sources confirm CSRF as the underlying issue, ...
CVE-2024-9233
CVE-2024-9233 concerns the Logo Slider WordPress plugin, versions prior to 3.7.1. The public description and Red Hat/NVD entries confirm a lack of CSRF protection when updating plugin settings, potentially allowing a logged-in admin to be coerced into changing settings via CSRF. The vulnerability...