← back
CVE-2023-2359

Revolution Slider <= 6.6.12 - Author+ Remote Code Execution

EPSS 2.5%
The Slider Revolution WordPress plugin through 6.6.12 does not check for valid image files upon import, leading to an arbitrary file upload which may be escalated to Remote Code Execution in some server configurations.
Affected products
Unknown · Slider Revolution

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://wpscan.com/vulnerability/a8350890-e6d4-4b04-a158-2b0ee3748e65https://wpscan.com/vulnerability/a8350890-e6d4-4b04-a158-2b0ee3748e65/