- WordPress Plugin IMDb Profile Widget is prone to a local file inclusion vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin IMDb Profile Widget version 1.0.8 is vulnerable; other versions may also be affected.
- Edit the source code to ensure that input is properly verified or disable the plugin until a fix is available
- WordPress Plugin Church Admin Cross-Site Scripting (0.800)
- WordPress Plugin Admin Pack by SITE CASEIRO Cross-Site Scripting (1.1)
- WordPress Plugin Calendar Unspecified Vulnerability (1.3.10)
- WordPress Plugin Notices Ticker Cross-Site Request Forgery (5.0)
- WordPress Plugin WPML Translation Management PHP Object Injection (2.4.1)