Description
WordPress Plugin JupiterX Core is prone to multiple vulnerabilities, including information disclosure and denial of service vulnerabilities. Exploiting these issues could allow an attacker to obtain sensitive information that may help in launching further attacks, or to cause the affected website to consume memory and CPU resources, thus denying service to legitimate users. WordPress Plugin JupiterX Core version 2.0.6 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.0.7 or latest
References
Related Vulnerabilities
WordPress Plugin Image Photo Gallery Final Tiles Grid Security Bypass (3.3.52)
Next.js User Interface (UI) Misrepresentation of Critical Information Vulnerability (CVE-2022-23646)
WordPress Plugin ChimpExpress Cross-Site Scripting (1.6.3)
PHP Other Vulnerability (CVE-2006-4484)
WordPress Plugin Photo Gallery, Images, Slider in Rbs Image Gallery Remote Code Execution (2.0.14)