Filtered by vendor Chuckmo Subscriptions
Filtered by product Lobot Slider Administrator Subscriptions

Search

Switch to Advanced Search (Beta)
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2026-3331 2 Chuckmo, Wordpress 2 Lobot Slider Administrator, Wordpress 2026-03-23 4.3 Medium
The Lobot Slider Administrator plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 0.6.0. This is due to missing or incorrect nonce validation on the fourty_slider_options_page function. This makes it possible for unauthenticated attackers to modify plugin slider-page configuration via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.