Description
The Slider Revolution plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 6.7.36 via the 'used_svg' and 'used_images' parameters. This makes it possible for authenticated attackers, with Contributor-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.
Published: 2025-08-29
Score: 6.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Arbitrary file read via path traversal
Action: Apply patch
AI Analysis

Impact

The vulnerability is a path traversal flaw in the Slider Revolution WordPress plugin that is triggered by the 'used_svg' and 'used_images' parameters. It enables an authenticated user with Contributor-level access or higher to read the contents of arbitrary files on the server, potentially exposing sensitive data.

Affected Systems

Revolution Slider: Slider Revolution WordPress plugin, all releases up to and including version 6.7.36.

Risk and Exploitability

The flaw carries a CVSS score of 6.5, indicating moderate severity, and an EPSS score of less than 1% showing a low probability of exploitation. The vulnerability is not listed in the CISA KEV catalogue. Exploitation requires legitimate Contributor access, after which an attacker can supply crafted input to retrieve any file path on the server.

Generated by OpenCVE AI on April 20, 2026 at 19:45 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Slider Revolution to version 6.7.37 or later.
  • If an upgrade is not possible, remove or disable the 'used_svg' and 'used_images' options in the plugin settings to eliminate the remote input pathway.
  • Ensure that Contributor and higher roles are strictly needed and monitor account activity for unauthorized file access attempts.

Generated by OpenCVE AI on April 20, 2026 at 19:45 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-26172 The Slider Revolution plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 6.7.36 via the 'used_svg' and 'used_images' parameters. This makes it possible for authenticated attackers, with Contributor-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.
History

Fri, 29 Aug 2025 12:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 29 Aug 2025 11:00:00 +0000

Type Values Removed Values Added
Description The Slider Revolution plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 6.7.36 via the 'used_svg' and 'used_images' parameters. This makes it possible for authenticated attackers, with Contributor-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.
Title Slider Revolution <= 6.7.36 - Authenticated (Contributor+) Arbitrary File Read via 'used_svg' and 'used_images'
Weaknesses CWE-22
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2026-04-08T17:30:59.698Z

Reserved: 2025-08-19T22:39:42.607Z

Link: CVE-2025-9217

cve-icon Vulnrichment

Updated: 2025-08-29T11:45:40.823Z

cve-icon NVD

Status : Deferred

Published: 2025-08-29T11:15:31.647

Modified: 2026-06-17T10:08:32.820

Link: CVE-2025-9217

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-20T19:45:15Z

Weaknesses
  • CWE-22

    Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')