CVE

CVE-2024-1745

Date: (C)2024-03-26   (M)2024-03-27

The Testimonial Slider WordPress plugin before 2.3.7 does not properly ensure that a user has the necessary capabilities to edit certain sensitive Testimonial Slider WordPress plugin before 2.3.7 settings, making it possible for users with at least the Author role to edit them.

Reference:

https://wpscan.com/vulnerability/b63bbfeb-d6f7-4c33-8824-b86d64d3f598/