cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-24913,https://securityvulnerability.io/vulnerability/CVE-2021-24913,Logo Showcase with Slick Slider < 2.0.1 - Arbitrary Media Title/Description/Alt Text/URL Update via CSRF,"The Logo Showcase with Slick Slider WordPress plugin before 2.0.1 does not have CSRF check in the lswss_save_attachment_data AJAX action, allowing attackers to make a logged in high privilege user, change title, description, alt text, and URL of arbitrary uploaded media.",Wordpress,"Logo Showcase With Slick Slider – Logo Carousel, Logo Slider & Logo Grid",4.3,MEDIUM,0.0006900000153109431,false,,false,false,false,,,false,false,,2022-02-28T09:06:20.000Z,0
CVE-2021-24730,https://securityvulnerability.io/vulnerability/CVE-2021-24730,Logo Showcase with Slick Slider < 1.2.5 - Subscriber+ Arbitrary Media Title/Description/Alt Text/URL Update,"The Logo Showcase with Slick Slider WordPress plugin before 1.2.5 does not have CSRF and authorisation checks in the lswss_save_attachment_data AJAX action, allowing any authenticated users, such as Subscriber, to change title, description, alt text, and URL of arbitrary uploaded media.",Wordpress,"Logo Showcase With Slick Slider – Logo Carousel, Logo Slider & Logo Grid",4.3,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2022-02-28T09:06:07.000Z,0
CVE-2021-24729,https://securityvulnerability.io/vulnerability/CVE-2021-24729,Logo Showcase with Slick Slider < 1.2.4 - Author+ Stored Cross Site Scripting,"The Logo Showcase with Slick Slider WordPress plugin before 1.2.4 does not sanitise the Grid Settings, which could allow users with a role as low as Author to perform stored Cross-Site Scripting attacks via post metadata of Grid logo showcase.",Wordpress,"Logo Showcase With Slick Slider – Logo Carousel, Logo Slider & Logo Grid",5.4,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2021-11-23T19:16:10.000Z,0