Unrated severityNVD Advisory· Published May 15, 2025· Updated May 17, 2025
GS Logo Slider < 3.7.1 - Settings Update via Cross-Site Request Forgery
CVE-2024-9233
Description
The Logo Slider WordPress plugin before 3.7.1 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
Affected products
1- Range: 0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- wpscan.com/vulnerability/a466cea4-0ae5-44a1-9e12-bd5dbecde2f2/mitreexploitvdb-entrytechnical-description
News mentions
0No linked articles in our index yet.