Vulnerabilities and security researches forpost-slides post-slides

Feb 27, 2026

CVE, Research URL: CVE-2025-15491
Home page URL: Security reports for Post Slides
Application: Post Slides
Date: Feb 07, 2026
Research Description: The Post Slides WordPress plugin through 1.0.1 does not validate some shortcode attributes before using them to generate paths passed to include function/s, allowing any authenticated users such as with contributor or higher roles to perform LFI attacks
Affected versions: max 1.0.1.
Status: vulnerable