ThreatPress

WordPress Vulnerabilities Database

Back

WordPress RevSlider - File Upload and Execute

Product
Slider Revolution
Description
This vulnerability allows an attacker to upload arbitrary PHP code and execute remote code.
Solution
Update the plugin.
Classification
Type Remote File Inclusion
References
Exploit-DB
CVE
Name CVE-2014-9735
Versions
Affected In <= 3.0.95
Fixed In 3.0.96
Disclosure date
2015-05-08
Credits
metasploit