Description
WordPress Plugin MContact Button [only if downloaded via the vendor website] contains suspicious code. Attackers can exploit this issue to perform a variety of actions. Successful attacks will compromise the affected application and possibly the webserver or computer. WordPress Plugin MContact Button version 2.0.6 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.0.7 or latest
References
Related Vulnerabilities
WordPress 5.0.x Directory Traversal (5.0 - 5.0.21)
Internet Information Services Other Vulnerability (CVE-1999-0191)
WordPress Plugin qTranslate Cross-Site Request Forgery (2.5.34)
WordPress Plugin WordPress Photo Gallery by Gallery Bank SQL Injection (3.0.101)
Liferay Portal CVE-2022-45320 Vulnerability (CVE-2022-45320)