CVE-2014-9735

EXPLOITED NUCLEI

ThemePunch Slider Revolution <3.0.96 & Showbiz Pro <1.7.1 - RCE

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2014-9735 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 2 public exploits from researchers including Metasploit, Simo Ben youssef, including a Metasploit module exploits/unix/webapp/wp_revslider_upload_execute. A Nuclei detection template is also available.

AI-analyzed exploit summary This Metasploit module exploits an arbitrary file upload vulnerability in the WordPress RevSlider plugin (CVE-2014-9735), allowing remote code execution by uploading a malicious PHP file via a crafted ZIP archive.

Description

The ThemePunch Slider Revolution (revslider) plugin before 3.0.96 for WordPress and Showbiz Pro plugin 1.7.1 and earlier for Wordpress does not properly restrict access to administrator AJAX functionality, which allows remote attackers to (1) upload and execute arbitrary files via an update_plugin action; (2) delete arbitrary sliders via a delete_slider action; and (3) create, (4) update, (5) import, or (6) export arbitrary sliders via unspecified vectors.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotephp
https://www.exploit-db.com/exploits/36957

This Metasploit module exploits an arbitrary file upload vulnerability in the WordPress RevSlider plugin (CVE-2014-9735), allowing remote code execution by uploading a malicious PHP file via a crafted ZIP archive.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: WordPress ThemePunch Revolution Slider (revslider) plugin <= 3.0.95
No auth needed
Prerequisites: Target must have the vulnerable RevSlider plugin installed and active
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by Simo Ben youssef · rubypocphp
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/wp_revslider_upload_execute.rb

This Metasploit module exploits an arbitrary PHP file upload vulnerability in the WordPress RevSlider plugin (CVE-2014-9735). It uploads a malicious ZIP archive containing a PHP payload, which is then executed to achieve remote code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: WordPress ThemePunch Slider Revolution (RevSlider) plugin versions 3.0.95 and prior
Auth required
Prerequisites: Access to WordPress admin-ajax.php endpoint · RevSlider plugin installed and vulnerable version active
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

WordPress RevSlider - Remote Code Execution via File Upload
HIGHby iamnoooob,pdresearch

References (7)

Core 7

Scores

EPSS 0.8275
EPSS Percentile 99.3%

Details

VulnCheck KEV 2014-12-15
CWE
CWE-264
Status published
Products (2)
themepunch/showbiz_pro < 1.7.1
themepunch/slider_revolution < 3.0.95
Published Jun 30, 2015
Tracked Since Feb 18, 2026