MEDIUM
leethompson
CVE published 2026-06-15
CVE-2016-20074
CVE-2016-20074 is a cross-site request forgery (CSRF) vulnerability in the WordPress Lazy Content Slider Plugin version 3.4. This vulnerability allows attackers to perform unauthorized actions by crafting malicious HTML forms, tricking authenticated administrators into submitting POST requests to the plugin settings page via lzcs_admin.php. This can lead to modifications of plugin configuration parameters [truncated]