Shapedplugin Logo Carousel — known CVE vulnerabilities
Every CVE whose affected-product data names Shapedplugin Logo Carousel, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-24739 — CVSS 8.1 (high): The Logo Carousel WordPress plugin before 3.4.2 allows users with a role as low as Contributor to duplicate and view arbitrary private…
CVE-2021-24738 — CVSS 5.4 (medium): The Logo Carousel WordPress plugin before 3.4.2 does not validate and escape the "Logo Margin" carousel option, which could allow users…