Medium severity4.3NVD Advisory· Published Sep 2, 2024· Updated Jun 17, 2026
CVE-2024-45270
CVE-2024-45270
Description
WordPress plugin "Carousel Slider" provided by Sayful Islam contains a cross-site request forgery vulnerability on Hero image selection feature. While logged in to the WordPress site with Carousel Slider plugin enabled, accessing a crafted page may cause a user to alter the contents of the WordPress site.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3(expand)+ 1 more
- (no CPE)
- (no CPE)
- Sayful Islam/Carousel Sliderv5Range: prior to 2.2.4
Patches
Vulnerability mechanics
References
2- jvn.jp/en/jp/JVN25264194/nvdThird Party Advisory
- wordpress.org/plugins/carousel-slider/nvdProduct
News mentions
0No linked articles in our index yet.