CVE-2024-1745

Published: Mar 26, 2024Modified: May 7, 2025

4.3

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Exploitability: 2.8 / Impact: 1.4

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

The Testimonial Slider WordPress plugin before 2.3.7 does not properly ensure that a user has the necessary capabilities to edit certain sensitive Testimonial Slider WordPress plugin before 2.3.7 settings, making it possible for users with at least the Author role to edit them.

Affected (1)

Products: Radiustheme: Testimonial Slider And Showcase

Radiustheme

1 product

Testimonial Slider And Showcase

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Radiustheme Testimonial Slider And Showcase	Before 2.3.7

References (2)

https://wpscan.com/vulnerability/b63bbfeb-d6f7-4c33-8824-b86d64d3f598/

Source: contact@wpscan.com

ExploitThird Party Advisory

https://wpscan.com/vulnerability/b63bbfeb-d6f7-4c33-8824-b86d64d3f598/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.