CVE-2021-24739

Publication date

2021-12-21 08:45:28

Family

WPScan

State

PUBLISHED

Description

The Logo Carousel WordPress plugin before 3.4.2 allows users with a role as low as Contributor to duplicate and view arbitrary private posts made by other users via the Carousel Duplication feature