The Slider Revolution plugin for WordPress has a security flaw that allows unauthorized changes to be made to data. This is because the init_rest_api function in versions up to 6.7.0 does not have a capability check. This means that attackers who are not logged in can make changes to slider data.