Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThemePunch Slider Revolution allows Reflected XSS.
This issue affects Slider Revolution: from 7.0.0 through 7.0.16.
This issue affects Slider Revolution: from 7.0.0 through 7.0.16.
Project Subscriptions
Advisories
No advisories yet.
Fixes
Solution
Update the WordPress Slider Revolution Plugin to the latest available version (at least 7.1.0).
Workaround
No workaround given by the vendor.
References
History
Thu, 02 Jul 2026 14:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Themepunch
Themepunch slider Revolution Wordpress Wordpress wordpress |
|
| Vendors & Products |
Themepunch
Themepunch slider Revolution Wordpress Wordpress wordpress |
Thu, 02 Jul 2026 12:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThemePunch Slider Revolution allows Reflected XSS. This issue affects Slider Revolution: from 7.0.0 through 7.0.16. | |
| Title | WordPress Slider Revolution plugin 7.0.0-7.0.16 - Cross Site Scripting (XSS) vulnerability | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV3_1
|
Projects
Sign in to view the affected projects.
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-07-02T12:21:24.825Z
Reserved: 2026-06-25T08:03:42.567Z
Link: CVE-2026-57678
No data.
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-02T17:45:03Z
Weaknesses