WordPress WP Logo Showcase Responsive Slider and Carousel plugin <= 3.6 - Broken Access Control vulnerability
CVE-2023-40200

5.3MEDIUM

Key Information:

Vendor: WordPress
Status: WP Logo Showcase Responsive Slider And Carousel
Vendor: CVE Published:; 11 June 2026

What is CVE-2023-40200?

Authorization bypass through User-Controlled key vulnerability in Essential Plugin WP Logo Showcase Responsive Slider and Carousel allows Exploiting Incorrectly Configured Access Control Security Levels.

This issue affects WP Logo Showcase Responsive Slider and Carousel: from n/a through 3.6.

Affected Version(s)

WP Logo Showcase Responsive Slider and Carousel <= 3.6

References

https://patchstack.com/database/wordpress/plugin/wp-logo-...

vdb-entry

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 11, 2026
Vulnerability Reserved
Aug 10, 2023

Credit

Abdi Pranata | Patchstack Bug Bounty Progran

CVE-2023-40200 Data

JSON