Description

WordPress Plugin Acurax On Click Pop Under is prone to multiple unspecified vulnerabilities. No available information exists regarding these issues and their impact on a vulnerable website. WordPress Plugin Acurax On Click Pop Under version 2.2.1 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 2.2.2 or latest

References

https://plugins.svn.wordpress.org/acurax-on-click-pop-under/trunk/readme.txt

Related Vulnerabilities

osTicket Server-Side Request Forgery (SSRF) Vulnerability (CVE-2020-24881)

Moodle Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2016-7038)

Apache Tomcat Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-5515)

ATutor Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-1000002)

WordPress Plugin Essential Content Types Security Bypass (1.8.6)

Severity

High

Tags

Missing Update