CVSS base score
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
What the vulnerability does
The Slider Revolution plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability check on several functions in all versions up to, and including, 6.7.37. This makes it possible for authenticated attackers, with Contributor-level access and above, to install and activate plugin add-ons, create sliders, and download arbitrary files.
Explanation of Vulnerability in Simple Terms
Slider Revolution versions up to 6.7.37 contain a path traversal vulnerability that allows authenticated users to read sensitive files from the server. An attacker with low-level site access can bypass directory restrictions and access files outside the intended scope. This affects confidentiality but not data integrity or availability.
What an attacker can do
Read sensitive files on the server outside the intended directory.
Potential impact on your site
Users with contributor or subscriber roles could access configuration files, database backups, or other sensitive data.
Conditions required to exploit
Attacker must have a low-privilege authenticated account on the site.
Key dates
External resources
Related vulnerabilities
