WordPress LayerSlider Plugin Security Update Advisory (CVE-2024-2879)

Apr 05 2024

Overview

We have released a security update to address a vulnerability in the LayerSlider plugin in WordPress[1][2]. users of affected products are advised to update to the latest version.

Affected Products

WordPress LayerSlider versions 7.9.11 through 7.10.0

Resolved Vulnerabilities

Unauthenticated SQL Injection Vulnerability (CVE-2024-2879) in LayerSlider in WordPress [1][2]

Vulnerability Patches

vulnerability patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

WordPress LayerSlider versions up to 7.10.1

Referenced Sites

[1] https://www.wordfence.com/blog/2024/04/5500-bounty-awarded-for-unauthenticated-sql-injection-vulnerability-patched-in-layerslider-wordpress-plugin/

[2] https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/layerslider/layerslider-7911-7100-unauthenticated-sql-injection

[3] https://layerslider.com/release-log/

WordPress LayerSlider Plugin Security Update Advisory (CVE-2024-2879)

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Dell (Dell InsightIQ) Product Security Update Advisory

Google Chrome Browser (123.0.6312.105) Security Update Advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Tags:

Dell (Dell InsightIQ) Product Security Update Advisory

Google Chrome Browser (123.0.6312.105) Security Update Advisory