WordPress Plugin Security & Malware scan by CleanTalk is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently interact with all its AJAX actions, which could lead to multiple vulnerabilities - from arbitrary file deletion/download to PHP function injection. WordPress Plugin Security & Malware scan by CleanTalk version 2.50 is vulnerable; prior versions may also be affected.
Update to plugin version 2.51 or latest
WordPress Plugin spam-byebye Cross-Site Scripting (2.2.1)
WordPress Plugin Simple Flash Video Cross-Site Scripting (1.7)
WordPress Plugin WordPress Related Posts Cross-Site Scripting (3.6.4)
WordPress Plugin My Site Audit Cross-Site Scripting (1.2.4)
WordPress Plugin Ultimate Addons for Elementor Multiple Cross-Site Scripting Vulnerabilities (1.29.2)