VYPR
Medium severity4.3NVD Advisory· Published Sep 2, 2024· Updated Jun 17, 2026

CVE-2024-45270

CVE-2024-45270

Description

WordPress plugin "Carousel Slider" provided by Sayful Islam contains a cross-site request forgery vulnerability on Hero image selection feature. While logged in to the WordPress site with Carousel Slider plugin enabled, accessing a crafted page may cause a user to alter the contents of the WordPress site.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • WordPress/Carousel Sliderllm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)
  • Sayful Islam/Carousel Sliderv5
    Range: prior to 2.2.4

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.