PatchSiren cyber security CVE debrief
CVE-2023-40200 Essential Plugin CVE debrief
A vulnerability in WP Logo Showcase Responsive Slider and Carousel, known as CVE-2023-40200, has been identified with a CVSS score of 5.3 and a severity of MEDIUM. This vulnerability is related to an authorization bypass through a user-controlled key, allowing for the exploitation of incorrectly configured access control security levels. The affected versions of the plugin range from n/a through 3.6.
- Vendor
- Essential Plugin
- Product
- WP Logo Showcase Responsive Slider and Carousel
- CVSS
- MEDIUM 5.3
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-11
- Original CVE updated
- 2026-06-11
- Advisory published
- 2026-06-11
- Advisory updated
- 2026-06-11
Who should care
Users of WP Logo Showcase Responsive Slider and Carousel, particularly those using versions up to 3.6, should be aware of this vulnerability and take necessary actions to mitigate the risk.
Technical summary
The vulnerability, CVE-2023-40200, is characterized by the following details: CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N, and CWE-639. It was published on 2026-06-11T09:16:25.250Z and last modified on 2026-06-11T14:42:47.007Z.
Defensive priority
MEDIUM
Recommended defensive actions
- Update WP Logo Showcase Responsive Slider and Carousel to a version beyond 3.6.
- Review and adjust access control configurations to prevent exploitation of incorrectly configured security levels.
Evidence notes
The CVE was published by an unknown vendor, but evidence from Patchstack suggests that the vulnerability exists in WP Logo Showcase Responsive Slider and Carousel.
Official resources
-
CVE-2023-40200 CVE record
CVE.org
-
CVE-2023-40200 NVD detail
NVD
-
Source item URL
nvd_modified
- Mitigation or vendor reference
CVE-2023-40200 was published on 2026-06-11T09:16:25.250Z and last modified on 2026-06-11T14:42:47.007Z.