ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Lazy Content Slider Plugin 3.4 - CSRF

Product
Lazy Content Slider
Description
Lazy Content Slider plugin is prone to a cross-site request forgery vulnerability. It allows an attacker to gain unauthorized access to the vulnerable application by performing certain actions in the context of an authorized user's session.
Solution
Update WordPress plugin to the newer stable and safe version.
Classification
Type Cross Site Request Forgery (CSRF)
OWASP Top 10 A8: Cross Site Request Forgery (CSRF)
References
Exploit-DB
CVE
Name CVE-N/A
Versions
Affected In <= 3.4
Fixed In 3.5
Disclosure date
2016-07-08
Credits
Persian Hack Team