Description

WordPress Plugin Add New Default Avatar [Emrikol's Fork] is prone to multiple unspecified vulnerabilities. No available information exists regarding these issues and their impact on a vulnerable website. WordPress Plugin Add New Default Avatar [Emrikol's Fork] version 2.0.1 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 3.0.0 or latest

References

https://plugins.svn.wordpress.org/add-new-default-avatar-emrikols-fork/trunk/readme.txt

Related Vulnerabilities

Apache Tomcat Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2006-7196)

Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-3547)

WordPress Plugin Catch Themes Demo Import Unspecified Vulnerability (1.8)

Apache Tomcat Improperly Implemented Security Check for Standard Vulnerability (CVE-2017-15706)

Oracle Database Server CVE-2007-5505 Vulnerability (CVE-2007-5505)

Severity

High

Tags

Missing Update