Thread: Security Vulnerability for Revslider Plugin **IMPORTANT**

Security Vulnerability for Revslider Plugin **IMPORTANT**

Hi,

I just received an email from my hosting account with information about a recent hack that has been found in older versions of the revslider plugin that allows an attacker to download any file from your hosting account, such as the configuration file containing the database passwords. Once the attacker has this information the attacker can comprise your website via the database.

As I understand this correctly, ClassiPress offers this plugin as part of a bundle for the sliders onsite to work. But no new license has been bought by the developer AppThemes to provide an update for it's customers. Please find more information about this issue here: http://blog.sucuri.net/2014/09/slide...exploited.html

I received some guides, but this is only for those who paid. I am currently on version 2.2.3 with no option to update it. Meaning my site/s and probably many others using ClassiPress and other themes are at risk.

Did anyone else receive information about this? Will AppThemes include an update for this plugin as part of the bundle?

Seems like similar has happened before: http://forums.appthemes.com/wordpres...rdpress-79240/