CVE-2025-31584

{"id": "CVE-2025-31584", "cveTags": [], "metrics": {}, "published": "2025-03-31T13:15:51.547", "references": [{"url": "https://patchstack.com/database/Wordpress/Plugin/elfsight-testimonials-slider/vulnerability/wordpress-elfsight-testimonials-slider-plugin-1-0-1-broken-access-control-vulnerability?_s_id=cve", "source": "audit@patchstack.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "audit@patchstack.com", "description": [{"lang": "en", "value": "CWE-862"}]}], "descriptions": [{"lang": "en", "value": "Missing Authorization vulnerability in elfsight Elfsight Testimonials Slider elfsight-testimonials-slider allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Elfsight Testimonials Slider: from n/a through <= 1.0.1."}, {"lang": "es", "value": "La vulnerabilidad de falta de autorizaci\u00f3n en elfsight Elfsight Testimonials Slider permite explotar niveles de seguridad de control de acceso configurados incorrectamente. Este problema afecta al control deslizante de testimonios de Elfsight desde la versi\u00f3n n/d hasta la 1.0.1."}], "lastModified": "2026-04-01T17:21:22.207", "sourceIdentifier": "audit@patchstack.com"}