Description
WordPress Plugin Pods-Custom Content Types and Fields contains malicous code. Exploiting this issue may allow an attacker to create a new administrative user account, thus compromising the affected application, and possibly the webserver or computer. WordPress Plugin Pods-Custom Content Types and Fields version 3.2.3 is affected.
Remediation
Update back to clean plugin version 3.2.2 or latest
References
Related Vulnerabilities
Oracle Database Server CVE-2020-2527 Vulnerability (CVE-2020-2527)
PleskLin URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-24044)
Java Unspesificed Vulnerability (CVE-2018-3150)
SugarCRM Improper Input Validation Vulnerability (CVE-2012-0694)
WordPress Plugin Category Specific RSS feed Subscription Cross-Site Request Forgery (2.0)