Description
WordPress Plugin WordPress Slider-WP 1 Slider [only if downloaded via the vendor website] contains suspicious code. Attackers can exploit this issue to perform a variety of actions. Successful attacks will compromise the affected application and possibly the webserver or computer. WordPress Plugin WordPress Slider-WP 1 Slider version 1.2.9 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.3.0 or latest
References
Related Vulnerabilities
WordPress Plugin Connections Business Directory Cross-Site Scripting (10.4.2)
WordPress Plugin Ketchup Restaurant Reservations Multiple Vulnerabilities (1.0.0)
WordPress Plugin WP-Stats 'author' Parameter SQL Injection (2.0)
Joomla! Core 2.5.x Denial of Service (2.5.0 - 2.5.9)
WordPress Plugin MediaElement.js-HTML5 Video & Audio Player Cross-Site Scripting (4.2.8)