That’s why we actively participate in Patchstack’s Managed Vulnerability Disclosure Program (mVDP) to work with ethical hackers and address potential security issues in Slider Revolution. Find details on how to report them responsibly later.
Learn more about Patchstack’s mVDP program: https://patchstack.com/database/vdp
New: We have now partnered with Wordfence also—the team behind the most deployed WordPress firewall—to provide a second first‑class disclosure channel. This means that the two most trusted security players in the WordPress ecosystem are working side‑by‑side with the Slider Revolution team.
For Our Customers
- Two layers of expert oversight
- Patchstack continually scans our codebase and alerts us to potential issues.
- Wordfence adds a real‑time firewall and malware‑scanner edge that can deploy rules the same day a vulnerability is disclosed.
- Updates keep you safe
Always run the latest version of Slider Revolution. Security patches ship as soon as they are ready—often within hours of disclosure. - See something suspicious?
Open a support ticket and we’ll investigate immediately.
By keeping your plugin current and leveraging a quality security plugin such as Wordfence, you dramatically reduce risk for yourself and your visitors.
For Ethical Hackers
| Patchstack mVDP | Wordfence Bug Bounty | |
| Preferred channel? | ✅ Primary | ✅ Alternate |
| How to submit | patchstack.com/database/vdp/revslider | wordfence.com/threat-intel/bug-bounty-program |
| Safe‑harbor? | Yes | Yes |
Submission Guidelines
- Act responsibly – No automated exploitation, no data exfiltration.
- Include details – Clear description, reproduction steps, proof‑of‑concept.
- Give us time – We follow responsible‑disclosure timelines (typically 7–14 days for a patch, coordinated release thereafter).
We value your expertise and will publicly acknowledge every valid report in our changelog and advisory feeds.
Working together for a safer WordPress
Security is a community effort. Whether you are a site owner updating regularly, a researcher hunting bugs, or a WordPress hosting provider deploying firewall rules, thank you for helping make Slider Revolution—and the web—safer.
I have purchased this tool and I am trying to figure out how to share it with the web developer without giving him full access and its only your chatbot available that is also clueless to help me with that. So please have some human working there to help your customers with issues they face. This not amusing at all. I hope someone will respond to my query. I have emailed but no response either.
Hi,
You can select the “Author, Editor, Admin” setting from the Permission dropdown option in SR Global Settings and assign the Author/Editor role to the web developer’s profile. https://www.sliderrevolution.com/faq/slider-revolution-global-settings/#author-editor-admin
You can also try any user access/user role plugins.
Thanks.
I’m taking care of an older site for someone who has a free version of Slider Revolution that is no longer being updated. WordFence says there’s a vulnerability there and the plugin should be removed. There are no updates for this older version, it appears, but my client could buy a license key to get updates. He does not want to. Will there be a security patch for old versions of this plugin? If I have to remove it can you recommend some other free plugin that has the same functionality?
Hi Annette,
We do not have any free version of the plugin; they might have the plugin copy packaged with their premium theme. In this case, the theme author can provide the updated version files for the plugin. Older versions of plugins/themes/WordPress can cause security issues; it is recommended to keep them updated. They can purchase a license and activate it to update the current version (ensure to create a backup first) and receive future updates and premium benefits:
https://www.sliderrevolution.com/faq/how-to-replace-bundled-version-with-premium-version/
https://www.sliderrevolution.com/premium-slider-revolution/
Thank you.
Bugg in your system, not sure as to where to report it as it persists even though I emailed avout it
This theme has a broken link
https://www.sliderrevolution.com/templates/wordpress-image-carousel/
Hi,
Thank you for sharing this with us, I have reported the issue to our development team.
Kind regards.
Hi Micke,
The issue is been fixed in the Slider Revolution version 6.7.23.
https://www.sliderrevolution.com/templates/wordpress-image-carousel/
https://www.sliderrevolution.com/templates/wordpress-instagram-gallery/
Thanks.