Description
WordPress Plugin Fancy Slideshows is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently overwrite default slide sources or styles. WordPress Plugin Fancy Slideshows version 2.4 is vulnerable; prior versions are also affected.
Remediation
Update to plugin version 2.4.1 or latest
References
Related Vulnerabilities
WordPress Plugin Wu-Rating Cross-Site Scripting (1.0 12319)
WordPress Plugin Search and Share Cross-Site Scripting (0.9.3)
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-3554)
phpBB Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-5173)