Access Control Compromise in WP Logo Showcase Responsive Slider by Essential Plugin
CVE-2023-40200

5.3MEDIUM

What is CVE-2023-40200?

A security flaw in the WP Logo Showcase Responsive Slider and Carousel plugin allows an attacker to bypass authorization controls. This vulnerability is caused by improperly configured access control security levels, enabling potential exploitation which could compromise the integrity of user data and site security.

Affected Version(s)

WP Logo Showcase Responsive Slider and Carousel <= 3.6

References

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Abdi Pranata | Patchstack Bug Bounty Progran
.