Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

WordPress Plugin OnePress Social Locker Multiple Unspecified Vulnerabilities (4.2.5)

Description

WordPress Plugin OnePress Social Locker is prone to multiple unspecified vulnerabilities. No available information exists regarding these issues and their impact on a vulnerable website. WordPress Plugin OnePress Social Locker version 4.2.5 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 4.2.6 or latest

References

https://wordpress.org/plugins/social-locker/changelog/

Related Vulnerabilities

PHP Use After Free Vulnerability (CVE-2014-3622)

Drupal Core 8.9.x Cross-Site Scripting (8.9.0 - 8.9.19)

Oracle Database Server CVE-2018-2875 Vulnerability (CVE-2018-2875)

MySQL CVE-2021-2171 Vulnerability (CVE-2021-2171)

Liferay DXP Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2025-43827)

Severity

High

Tags

Missing Update