Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Lifecycle Timeline
1DescriptionCVE.org
The Slider Revolution plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 7.0.9 via the 'get_stream_data()' function. This makes it possible for unauthenticated attackers to extract sensitive data including published password-protected post, page, and product content.
AnalysisAI
Sensitive information exposure in the Slider Revolution WordPress plugin (versions up to and including 7.0.9) allows unauthenticated remote attackers to bypass WordPress's native password-protection mechanism and retrieve the full content of protected posts, pages, and WooCommerce products via the vulnerable get_stream_data() function. The CVSS vector confirms no authentication, no user interaction, and no special conditions are required, making this trivially exploitable against any affected installation. No public exploit code has been identified at time of analysis, and the vulnerability is not listed in the CISA KEV catalog.
Technical ContextAI
Slider Revolution is a widely deployed WordPress slider/presentation plugin. The vulnerability resides in the get_stream_data() function, which fails to enforce WordPress's built-in content visibility controls before returning post, page, or product data. CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor) describes the root cause: the function does not check whether the requesting user has the necessary capability or has authenticated with the content's password before streaming content. This is a classic access-control bypass at the application layer - WordPress exposes REST or AJAX endpoints through which plugins can serve data, and if the plugin does not validate the password-protection status of the queried content, the framework's protection is silently circumvented. Affected CPE is not formally enumerated in the provided data, but the plugin is identified as Slider Revolution for WordPress, versions ≤ 7.0.9.
RemediationAI
Update the Slider Revolution plugin to a version beyond 7.0.9 as documented in the vendor changelog at https://www.sliderrevolution.com/changelog/. The exact patched release version is not independently confirmed from the available data - verify the current release version prior to deploying. As a compensating control while patching is pending, administrators can restrict access to WordPress AJAX and REST endpoints at the web server or WAF layer for unauthenticated requests, though this may break legitimate slider functionality and should be tested in a staging environment. Alternatively, temporarily avoid storing sensitive content behind password-protected posts if the plugin cannot be updated immediately. There are no known side-effect-free workarounds that do not impair plugin functionality - updating to the patched version is the only confirmed remediation.
The isMail transport in PHPMailer before 5.2.20 might allow remote attackers to pass extra parameters to the mail comman
The Backup Migration plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1
The Hash Form - Drag & Drop Form Builder plugin for WordPress is vulnerable to arbitrary file uploads due to missing fil
The GiveWP - Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP Object Injection in all
The Simple File List plugin for WordPress through version 4.2.2 contains an unauthenticated remote code execution vulner
The AI Engine WordPress plugin through version 3.1.3 exposes Bearer Token values through the /mcp/v1/ REST API endpoint
The Ninja Forms plugin before 2.9.42.1 for WordPress allows remote attackers to conduct PHP object injection attacks via
The Business Directory Plugin - Easy Listing Directories for WordPress plugin for WordPress is vulnerable to time-based
SQL injection in the NotificationX WordPress plugin (versions up to and including 2.8.2) allows unauthenticated remote a
The POST SMTP Mailer - Email log, Delivery Failure Notifications and Best Mail SMTP for WordPress plugin for WordPress i
The MasterStudy LMS WordPress Plugin - for Online Courses and Education plugin for WordPress is vulnerable to union base
The Country State City Dropdown CF7 plugin for WordPress is vulnerable to SQL Injection via the ‘cnt’ and 'sid' paramete
Same weakness CWE-200 – Information Exposure
View allSame technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-31089
GHSA-hch9-c8w4-xh4q