CVE-2025-15491

Name of the Vulnerable Software and Affected Versions Post Slides versions through 1.0.1

Description The software does not properly check shortcode attributes before using them to create file paths for inclusion, potentially allowing authenticated users with contributor or higher privileges to carry out Local File Inclusion (LFI) attacks.

Recommendations Update Post Slides to a version later than 1.0.1.