Bleeping Computer

File read flaw in Smart Slider plugin impacts 500K WordPress sites

A vulnerability in the Smart Slider 3 WordPress plugin, active on more than 800,000 websites, can be exploited to allow subscriber-level users access to arbitrary files on the server. An authenticated ...
TechRadar

Top WordPress Slider plugin hijacked to spread malware — here's what to look out for

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. Smart Slider 3 plugin update compromised with backdoors Malicious version 3.5.1.35 pushed to ...
TechRadar

Around 500,000 WordPress websites could be at risk from crucial plugin security flaw — here's what we know

Hackers can read arbitrary files with this newly discovered flaw When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. Smart Slider 3 WordPress plugin ...
Bleeping Computer

Smart Slider updates hijacked to push malicious WordPress, Joomla versions

Hackers hijacked the update system for the Smart Slider 3 Pro plugin for WordPress and Joomla, and pushed a malicious version with multiple backdoors. The developer says that only the Pro version ...
Infosecurity-magazine.com

XSS Vulnerabilities Found in WordPress Plugin Slider Revolution

A recent security audit of the Slider Revolution plugin has uncovered two significant vulnerabilities that could compromise the security of WordPress websites. Slider Revolution, a widely used premium ...