CVE-2024-3020 | shapedplugin Carousel, Slider, Gallery by WP Carousel Plugin up to 2.6.3 on WordPress shortcode deserialization

Posted by Angelo Barbosa | Apr 10, 2024 | CVE

A vulnerability was found in shapedplugin Carousel, Slider, Gallery by WP Carousel Plugin up to 2.6.3 on WordPress and classified as problematic. This issue affects some unknown processing. The manipulation of the argument shortcode leads to deserialization.

The identification of this vulnerability is CVE-2024-3020. The attack may be initiated remotely. There is no exploit available.

CVE-2024-3020 | shapedplugin Carousel, Slider, Gallery by WP Carousel Plugin up to 2.6.3 on WordPress shortcode deserialization

Related Posts

CVE-2024-4540 | Red Hat Keycloak/Single Sign-On HTTP Response KC_RESTART information disclosure

CVE-2024-2226 | Otter Block Plugin up to 2.6.4 on WordPress cross site scripting

CVE-2024-26122 | Adobe Experience Manager up to 6.5.19 Form Field cross site scripting (apsb24-21)

CVE-2024-36075 | Netwrix CoSoSys Endpoint Protector/CoSoSys Unify Application Configuration improper authentication