Description
WordPress Plugin JupiterX Core is prone to multiple vulnerabilities, including information disclosure and denial of service vulnerabilities. Exploiting these issues could allow an attacker to obtain sensitive information that may help in launching further attacks, or to cause the affected website to consume memory and CPU resources, thus denying service to legitimate users. WordPress Plugin JupiterX Core version 2.0.6 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.0.7 or latest
References
Related Vulnerabilities
WordPress Plugin WP Visitor Statistics (Real Time Traffic) SQL Injection (4.7)
WordPress Plugin DeMomentSomTres Subscribe Cross-Site Scripting (201909190900)
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-2348)
PHP Other Vulnerability (CVE-2002-0229)
WordPress Plugin Advanced User Registration and Management Cross-Site Scripting (2.3.5)