A WP Life Slider Responsive Slideshow
Moderate fix1 remedy
cpe:2.3:a:awplife:slider_responsive_slideshow:*:*:*:*:wordpress:*:*
Moderate fix1 remedy
- <= 1.5.4
A WP Life Slider PHP Object Injection Vulnerability
Vulnerability
A deserialization vulnerability allowing object injection has been identified in the WordPress plugin 'Slider Responsive Slideshow – Image slider, Gallery slideshow', affecting versions through 1.5.4. This vulnerability could lead to various injection attacks, including code injection, SQL injection, and path traversal, among others, if a suitable property-oriented programming chain is exploited.
Impact
Exploitation of this vulnerability could allow for PHP object injection, which might be leveraged to execute code injection, SQL injection, path traversal, denial-of-service attacks, and more, provided that a proper object-oriented programming chain is available.
Remediation
Users are advised to update to a version later than 1.5.4. For those using Patchstack, a mitigation rule has been issued to block attacks targeting this vulnerability until an official patch can be safely applied.
Added: Feb 20, 2026, 8:15 PM
Updated: Feb 20, 2026, 8:15 PM
Vulnerability Rating
Custom Algorithm
spread
2.2impact
10.0exploitability
4.8remediation
5.6relevance
3.2threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.