CSRF Vulnerability Affects GS Plugins Logo Slider Products
CVE-2023-51530

4.3MEDIUM

Key Information:

Vendor: WordPress
Status: Logo Slider – Logo Showcase, Logo Carousel, Logo Gallery And Client Logo Presentation
Vendor: CVE Published:; 29 February 2024

What is CVE-2023-51530?

A cross-site request forgery (CSRF) vulnerability in GS Plugins Logo Slider affects multiple products, including the Logo Showcase, Logo Carousel, Logo Gallery, and Client Logo Presentation. This vulnerability allows attackers to forge unauthorized requests without user consent, potentially compromising the security of the application. Users with versions from n/a up to 3.5.1 are advised to monitor their installations and apply necessary updates to prevent exploitation.

Affected Version(s)

Logo Slider – Logo Showcase, Logo Carousel, Logo Gallery and Client Logo Presentation <= 3.5.1

References

https://patchstack.com/database/vulnerability/gs-logo-sli...

vdb-entry

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 29, 2024
Vulnerability Reserved
Dec 20, 2023

Credit

Brandon Roldan (Patchstack Alliance)

CVE-2023-51530 Data

JSON

WordPress

What is CVE-2023-51530?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit