CVE-2026-9197 – Smart Slider 3

CVE ID :CVE-2026-9197

Published : June 6, 2026, 4:17 a.m. | 15 minutes ago

Description :The Smart Slider 3 plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.5.1.36 via the replaceHTMLImage function. This makes it possible for authenticated attackers, with administrator-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.

Severity: 4.9 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-9280 – Ad Inserter

CVE-2026-8991 – Drag and Drop Multiple File Upload for Contact Form 7

CVE-2026-8978 – OptinCraft

CVE-2026-8502 – LearnPress