Slider Revolution Plugin – Plugin Vulnerability Notification

  • Resolved cupflppr

    (@cupflppr)


    11 months, 2 weeks ago

    PLEASE HELP!!!

    My Silder Revolution version is a FREE version that comes with all my themes and i cant update it without buying it and im receiving a warning from WP Engine (my host company for all my client sites).

    —–

    At WP Engine we take the security of your sites very seriously, and make every effort to keep our customers aware of any potential security risks. We are reaching out to you today because we identified resources that may be utilizing a vulnerable version of the revslider plugin.

    WP Engine summary of the vulnerability: An attacker could use this vulnerability to modify site configuration, including adding backdoors such as other WordPress administrators.

    This vulnerability’s information has been verified by WPScan. Please note that questions related to this notification should be directed to WPScan, the plugin Author or the 3rd-party researcher for the most accurate information.

    Resources providing further information on this vulnerability:

    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6528

    https://wpscan.com/vulnerability/36ced447-84ea-4162-80d2-6df226cb53cb

    To secure your site, please upgrade to the latest version of this plugin.

    —–

    please advise.

    • This topic was modified 11 months, 2 weeks ago by cupflppr.
Viewing 4 replies - 1 through 4 (of 4 total)
  • Moderator James Huff

    (@macmanx)

    Since that is a commercial plugin, we ask that you please go to their official support channel, so you can get support from the people who know it best: https://account.sliderrevolution.com/portal/?redirect_to=supportsystem

    Forum volunteers do not have access to commercial products, so they would not know why it is not working correctly. Other community members who may have faced your issue might be able to help you, but your best bet is your product’s developer. We encourage you to use the official support venues, as it allows the developers to be aware of issues with their code and gives back to the community in a more robust way.

    My Silder Revolution version is a FREE version that comes with all my themes and i cant update it without buying it

    If the plugin came bundled with your theme, contact your theme’s author: they should be able to get you the latest versions of all 3rd-party commercial plugins they bundle with their own product.

    Thread Starter cupflppr

    (@cupflppr)

    i messaged my theme author to see what they say.

    Thread Starter cupflppr

    (@cupflppr)

    this is resolved, i got the latest version from my theme developer.

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Slider Revolution Plugin – Plugin Vulnerability Notification’ is closed to new replies.