vulnerable — Block Slider <= 2.2.3 – Missing Authorization | WordPress.org

duboin
(@duboin)

1 day, 3 hours ago

The Block Slider plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in versions up to, and including, 2.2.3. This makes it possible for authenticated attackers, with contributor-level access and above, to perform an unauthorized action.

https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/block-slider/block-slider-223-missing-authorization

The page I need help with: [log in to see the link]

You must be logged in to reply to this topic.

0 replies
1 participant
Last reply from: duboin
Last activity: 1 day, 3 hours ago
Status: not resolved