7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.5 High
AI Score
Confidence
Low
0.935 High
EPSS
Percentile
99.1%
The ThemePunch Slider Revolution (revslider) plugin before 3.0.96 for WordPress and Showbiz Pro plugin 1.7.1 and earlier for Wordpress does not properly restrict access to administrator AJAX functionality, which allows remote attackers to (1) upload and execute arbitrary files via an update_plugin action; (2) delete arbitrary sliders via a delete_slider action; and (3) create, (4) update, (5) import, or (6) export arbitrary sliders via unspecified vectors.
CPE | Name | Operator | Version |
---|---|---|---|
themepunch:showbiz_pro | themepunch showbiz pro | le | 1.7.1 |
seclists.org/fulldisclosure/2014/Nov/78
www.securityfocus.com/bid/71306
www.themepunch.com/products/old-revolution-slider-pre-4-2-vulnerabilty-explained/
blog.sucuri.net/2014/12/revslider-vulnerability-leads-to-massive-wordpress-soaksoak-compromise.html
plugins.trac.wordpress.org/browser/patch-for-revolution-slider/trunk/revsliderpatch.php
whatisgon.wordpress.com/2014/11/30/another-revslider-vulnerability/
wpvulndb.com/vulnerabilities/7954