Additional Security Issues Related to Issue Addressed in Version 2.2.3

majeedraza1 / carousel-slider

A WordPress plugin to Create SEO friendly Image, Logo, Video, Post, WooCommerce Product and HTML Content Carousel.

https://wordpress.org/plugins/carousel-slider/

Other

12 stars 3 forks source link

Additional Security Issues Related to Issue Addressed in Version 2.2.3 #31

Closed PluginVulnerabilities closed 1 year ago

PluginVulnerabilities commented 1 year ago

While reviewing the security change made in version 2.2.3, as at least one of our customers is using the plugin, we noticed that there are still a couple of AJAX accessible functions that are lacking a capabilities check and or a nonce check. The function add_slide_template() in the file /modules/HeroCarousel/Ajax.php lacks both, leading to a vulnerability. The function deactivate_feedback() in the file /includes/Admin/Feedback.php is lacking a capabilities check.

majeedraza1 commented 1 year ago

All AJAX operations are rechecked and add nonce verification and permission checking.