File read flaw in Smart Slider plugin impacts 500K WordPress sites
Over Security - Cybersecurity news aggregator [Unofficial]
March 29, 2026
A vulnerability in the Smart Slider 3 WordPress plugin, active on more than 800,000 websites, can be exploited to allow subscriber-level users access to arbitrary files on the server.
Discussion in the ATmosphere