cleantalk
Vulnerabilities and Security Researches

Logo Showcase with Slick Slider – Logo Carousel, Logo Slider & Logo Grid, CVE-2021-24729

CVE, Research URL

CVE-2021-24729

Home page URL

Security reports for Logo Showcase with Slick Slider – Logo Carousel, Logo Slider & Logo Grid

Application

Logo Showcase with Slick Slider – Logo Carousel, Logo Slider & Logo Grid

Published on
Nov 24, 2021
Research Description
The Logo Showcase with Slick Slider WordPress plugin before 1.2.4 does not sanitise the Grid Settings, which could allow users with a role as low as Author to perform stored Cross-Site Scripting attacks via post metadata of Grid logo showcase.
Affected versions
Min -, max 3.2.1.
Status
vulnerable
Previous vulnerability researches
Logo Showcase with Slick Slider – Logo Carousel, Logo Slider & Logo Grid (CVE-2022-4974) , Nov 15, 2024
Logo Showcase with Slick Slider – Logo Carousel, Logo Slider & Logo Grid (CVE-2021-24730) , Jun 07, 2024
Logo Showcase with Slick Slider – Logo Carousel, Logo Slider & Logo Grid (CVE-2021-24913) , Jun 07, 2024
Logo Showcase with Slick Slider – Logo Carousel, Logo Slider & Logo Grid (CVE-2021-24729) , Jun 07, 2024
New vulnerability
Contact Form by WPForms – Drag & Drop Form Builder for WordPress (CVE-2025-3794) , May 10, 2025
Jeg Elementor Kit (CVE-2025-2944) , May 10, 2025
1 Click WordPress Migration Plugin – 100% FREE for a limited time (CVE-2025-3455) , May 10, 2025
EUCookieLaw (CVE-2025-3897) , May 10, 2025
Frontend Login and Registration Blocks (CVE-2025-3605) , May 10, 2025