Unrated severityNVD Advisory· Published Jun 30, 2015· Updated Jun 17, 2026
CVE-2015-5151
CVE-2015-5151
Description
Cross-site scripting (XSS) vulnerability in the Slider Revolution (revslider) plugin 4.2.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the client_action parameter in a revslider_ajax_action action to wp-admin/admin-ajax.php.
Affected products
2- cpe:2.3:a:themepunch:slider_revolution:4.2.2:*:*:*:*:wordpress:*:*
- Range: =4.2.2
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.