VYPR

Logo Slider and Showcase

by WordPress

CVEs (1)

  • CVE-2021-24742MedNov 1, 2021
    risk 0.42cvss 6.5epss 0.01

    The Logo Slider and Showcase WordPress plugin before 1.3.37 allows Editor users to update the plugin's settings via the rtWLSSettings AJAX action because it uses a nonce for authorisation instead of a capability check.