Description
The WordPress plugin Slider Revolution was vulnerable to an arbitrary file disclosure vulnerability that allows an attacker to download any file from the server. This vulnerability is/was actively exploited in the wild.
Remediation
Upgrade to the latest version of the plugin.
References
Related Vulnerabilities
Joomla! Core Multiple Vulnerabilities (1.5.0 - 3.7.2)
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-6472)
WordPress 1.5.1.2 Multiple Vulnerabilities (1.0 - 1.5.1.2)
WordPress 4.8.x Multiple Vulnerabilities (4.8 - 4.8.15)
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-1551)