Description
WordPress Plugin Beautiful Stat Counter for WordPress-Everest Counter Lite [only if downloaded via the vendor website] contains suspicious code. Attackers can exploit this issue to perform a variety of actions. Successful attacks will compromise the affected application and possibly the webserver or computer. WordPress Plugin Beautiful Stat Counter for WordPress-Everest Counter Lite version 2.0.7 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.0.8 or latest
References
Related Vulnerabilities
Drupal Core 5.x Multiple Cross-Site Scripting Vulnerabilities (5.0 - 5.1)
WordPress 4.0 Multiple Vulnerabilities (4.0)
Dotclear Other Vulnerability (CVE-2007-3688)
Plone CMS Improper Restriction of XML External Entity Reference Vulnerability (CVE-2020-28734)
MediaWiki Improper Encoding or Escaping of Output Vulnerability (CVE-2020-35475)