WordPress plugin Slider Revolution arbitrary file disclosure

Description
  • The WordPress plugin Slider Revolution was vulnerable to an arbitrary file disclosure vulnerability that allows an attacker to download any file from the server. This vulnerability is/was actively exploited in the wild.
Remediation
  • Upgrade to the latest version of the plugin.
References