WordPress Plugin Vulnerabilities

Carousel Slider < 2.2.3 - Missing Authorization

Description

The Carousel Slider plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the handle_optin_optout() function hooked via 'admin_init' in versions up to, and including, 2.2.2. This makes it possible for unauthenticated attackers to opt in and opt out of tracking for the plugin.

Affects Plugins

Plugin icon
carousel-slider
Fixed in 2.2.3

References

CVE
CVE-2023-41848
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/5465eaab-03c0-438a-8553-c1f8b06b82bc

Classification

Type
NO AUTHORISATION
OWASP top 10
A5: Broken Access Control
CWE
CWE-862
CVSS
4.3 (Medium)

Miscellaneous

Original Researcher
Nguyen Anh Tien
Verified
No
WPVDB ID
60e2efb8-ddaa-43fb-aaee-d15e8edd05a8

Timeline

Publicly Published
2023-09-05 (about 8 months ago)
Added
2023-11-24 (about 5 months ago)
Last Updated
2023-12-04 (about 5 months ago)

Other

Published
Title
Published
2022-07-26
Title
Transposh WordPress Translation <= 1.0.8 - Subscriber+ Unauthorised Calls
Published
2024-04-22
Title
5 Stars Rating Funnel < 1.3.02 - Missing Authorization
Published
2022-06-30
Title
Accordions < 2.0.3 - Unauthenticated Arbitrary Options Update
Published
2023-11-27
Title
Yet Another Stars Rating < 3.4.4 - Missing Authorization via init
Published
2023-11-14
Title
Essential Grid < 3.0.19 - Missing Authorization