Description

One or more packages that are used in your web application are affected by known vulnerabilities. Please consult the details section for more information about each affected package.

Remediation

It's recommended to update the vulnerable packages to the latest version (if a fix exists). If a fix does not exist, you may want to suggest changes that address the vulnerability to the package maintainer or remove the package from your dependency tree.

Related Vulnerabilities

WordPress Plugin Improved user search in backend Cross-Site Request Forgery (1.2.4)

WordPress Plugin MyThemeShop Theme/Plugin Updater Cross-Site Scripting (1.2.3)

WordPress Plugin Caldera Forms-More Than Contact Forms Multiple Cross-Site Scripting Vulnerabilities (1.5.9.1)

WordPress Plugin ActiveHelper LiveHelp Live Chat Multiple Cross-Site Scripting Vulnerabilities (3.1.0)

WordPress 4.2.x Cross-Site Scripting Vulnerability (4.2 - 4.2.5)

Severity

High

Classification

CWE-1104

Tags

Missing Update Known Vulnerabilities