Summary
Wordpress Slider Revolution is prone to an arbitrary file download vulnerability
Impact
Exploiting this issue could allow an attacker to compromise the application and the underlying system
other attacks are also
possible.
Solution
Ask the vendor for an update
Detection
Send a crafted HTTP GET request and check the response
References
Severity
Classification
-
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- admin.cgi overflow
- AjaXplorer zoho plugin Directory Traversal Vulnerability
- Apache Archiva Multiple Remote Command Execution Vulnerabilities
- AlstraSoft AskMe Pro 'forum_answer.php' and 'profile.php' Multiple SQL Injection Vulnerabilities
- Ajax File and Image Manager 'data.php' PHP Code Injection Vulnerability