Description
WordPress Plugin Fancy Slideshows is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently overwrite default slide sources or styles. WordPress Plugin Fancy Slideshows version 2.4 is vulnerable; prior versions are also affected.
Remediation
Update to plugin version 2.4.1 or latest
References
Related Vulnerabilities
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2025-3628)
WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (6.0.21)
MySQL CVE-2015-2643 Vulnerability (CVE-2015-2643)
ProjectSend Insertion of Sensitive Information into Log File Vulnerability (CVE-2019-11492)
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-0046)