CVE-2026-9197
Received Received - Intake
Directory Traversal in Smart Slider 3 WordPress Plugin

Publication date: 2026-06-06

Last updated on: 2026-06-06

Assigner: Wordfence

Description
The Smart Slider 3 plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.5.1.36 via the replaceHTMLImage function. This makes it possible for authenticated attackers, with administrator-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-06
Last Modified
2026-06-06
Generated
2026-06-06
AI Q&A
2026-06-06
EPSS Evaluated
N/A
NVD
CVE-2026-9197
EUVD
EUVD-2026-34944
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
smart_slider smart_slider_3 to 3.5.1.36 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-22 The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

The Smart Slider 3 plugin for WordPress has a Directory Traversal vulnerability in all versions up to and including 3.5.1.36. This vulnerability exists in the replaceHTMLImage function.

It allows authenticated attackers with administrator-level access or higher to read arbitrary files on the server.

This means attackers can access files that they should not normally be able to see, potentially exposing sensitive information.


How can this vulnerability impact me? :

If exploited, this vulnerability can allow an attacker with administrator privileges to read sensitive files on the server.

This could lead to exposure of confidential data, such as configuration files, credentials, or other private information stored on the server.

Although the attacker needs high-level access, the impact on confidentiality is high, as indicated by the CVSS score.


How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:

The vulnerability allows authenticated attackers with administrator-level access to read arbitrary files on the server, which can contain sensitive information.

This exposure of sensitive information could potentially lead to non-compliance with data protection regulations such as GDPR and HIPAA, which require the protection of personal and sensitive data from unauthorized access.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart