A critical security vulnerability in the popular premium WordPress plugin Slider Revolution (commonly called “RevSlider”) has been discovered. This vulnerability enables attackers to bypass the WordPress access control and publish text on affected WordPress blogs and websites without needing log-in credentials. All RevSlider plugin versions 4.1.4 or older are affected.
We ask all customers that have installed RevSlider to immediately update the plugin. You can easily update to a secure version in the plugin settings of your WordPress dashboard.
More information about RevSlider and the security vulnerability is available from Code Canyon.
Photo Credit: ©1&1 Internet