Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total2

Critical0

High1

Medium1

Search Severity Year Type Sort Order

Reset

Showing 1-2 of 2 records

Threat Entry Updated 2024-11-21

CVE-2021-24739 - Logo Carousel Plugin

The Logo Carousel WordPress plugin before 3.4.2 allows users with a role as low as Contributor to duplicate and view arbitrary private posts made by other users via the Carousel Duplication feature

PLUGIN Logo Carousel

CVE-2021-24739

HIGH CVSS 8.1 2021-12-21

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2024-11-21

CVE-2021-24738 - Logo Carousel Plugin

The Logo Carousel WordPress plugin before 3.4.2 does not validate and escape the "Logo Margin" carousel option, which could allow users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks

PLUGIN Logo Carousel

CVE-2021-24738

MEDIUM CVSS 5.4 2021-12-21

Risk Score

Open Full Technical Breakdown

Blog

"Prevention is cheaper than a breach"

Threat Database

CVE-2021-24739 - Logo Carousel Plugin

CVE-2021-24738 - Logo Carousel Plugin

Company Links

Contact Us