Description
WordPress Plugin Images Slideshow by 2J-Image Slider is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently deactivate any plugins on the blog. WordPress Plugin Images Slideshow by 2J-Image Slider version 1.3.31 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.3.40 or latest
References
Related Vulnerabilities
WordPress Plugin BuddyPress Cover Arbitrary File Upload (2.1.4.2)
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-39200)
phpMyAdmin Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-7251)
Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-43394)