Description
WordPress Plugin Google Adsense and Hotel Booking is prone to an open proxy vulnerability. Exploiting this issue may allow attackers to hide attacks on third parties, or DoS a site if the POST request is pointed back at itself causing a loop. WordPress Plugin Google Adsense and Hotel Booking version 1.0.5 is vulnerable; prior versions are also affected.
Remediation
Disable the plugin until a fix is available
References
Related Vulnerabilities
Ruby on Rails Use of Externally-Controlled Format String Vulnerability (CVE-2013-4389)
WordPress Plugin Gwolle Guestbook Remote File Inclusion (1.5.3)
PHP Improper Certificate Validation Vulnerability (CVE-2015-3152)
WordPress Plugin Mobile Device Detection by 51Degrees Cross-Site Scripting (3.1.5.2)