Security Advisory

CVE-2024-45270

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-09-01 23:55:28

Last updated 2025-03-13 19:57:46

Assigner jpcert

State PUBLISHED

Description

WordPress plugin "Carousel Slider" provided by Sayful Islam contains a cross-site request forgery vulnerability on Hero image selection feature. While logged in to the WordPress site with Carousel Slider plugin enabled, accessing a crafted page may cause a user to alter the contents of the WordPress site.

← Browse all CVEs View on cve.org ↗