ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Slider Revolution Plugin 3.0.95 - Shell Upload Exploit

Product
Slider Revolution
Description
This plugin cannot check authentication in revslider_admin.php/showbiz_admin.php which allows an attacker to abuse administrative features (for the example, creating or deleting sliders, importing or exporting sliders, etc.).
Solution
Update the plugin.
Classification
Type Remote File Inclusion
References
Exploit-DB
CVE
Name CVE-N/A
Versions
Affected In <= 3.0.95
Fixed In 3.0.96
Disclosure date
2014-11-26
Credits
Simo Ben Youssef