EUVD-2025-33332

🗓️ 09 Oct 2025 11:20:56Reported by EUVDType

Slider Revolution flaw allows unauthorized access and data changes up to 6.7.37; contributors can install add ons and create sliders.

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2025-10249	9 Oct 202512:11	–	circl
CNNVD	WordPress plugin Slider Revolution 安全漏洞	9 Oct 202500:00	–	cnnvd
CVE	CVE-2025-10249	9 Oct 202511:20	–	cve
Cvelist	CVE-2025-10249 Slider Revolution <= 6.7.37 - Missing Authorization to Authenticated (Contributor+) Arbitrary File Read	9 Oct 202511:20	–	cvelist
NVD	CVE-2025-10249	9 Oct 202512:15	–	nvd
Patchstack	WordPress Slider Revolution plugin <= 6.7.37 - Missing Authorization to Authenticated (Contributor+) Arbitrary File Read vulnerability	9 Oct 202522:16	–	patchstack
Positive Technologies	PT-2025-41371	9 Oct 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-10249	10 Oct 202512:25	–	redhatcve
Vulnrichment	CVE-2025-10249 Slider Revolution <= 6.7.37 - Missing Authorization to Authenticated (Contributor+) Arbitrary File Read	9 Oct 202511:20	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (October 6, 2025 to October 12, 2025)	16 Oct 202516:22	–	wordfence

[
  {
    "enisaIdVendor": [
      {
        "id": "d71c5592-155c-30f5-b08f-9a00939b9612",
        "vendor": {
          "name": "Revolution Slider"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "f76f2ca5-9737-30ca-8144-d8e237564022",
        "product": {
          "name": "Slider Revolution"
        },
        "product_version": "* ≤6.7.37"
      }
    ]
  }
]

Source	Link
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/43f2c4e5-c19d-4b7c-849b-47052bb62cb5
sliderrevolution	www.sliderrevolution.com/documentation/changelog/
nvd	www.nvd.nist.gov/vuln/detail/CVE-2025-10249

09 Oct 2025 14:46Current

4.8Medium risk

Vulners AI Score4.8

CVSS 3.16.5

EPSS0.0008

SSVC