Description
WordPress Plugin Slick Popup:Contact Form 7 Popup is prone to a privilege escalation vulnerability. Exploiting this issue may allow attackers to bypass the expected capabilities check and perform otherwise restricted actions; other attacks are also possible. WordPress Plugin Slick Popup:Contact Form 7 Popup version 1.7.1 is vulnerable; prior versions may also be affected.
Remediation
Disable the plugin until a fix is available
References
Related Vulnerabilities
phpMyFAQ Improper Restriction of Excessive Authentication Attempts Vulnerability (CVE-2017-11187)
WordPress Plugin The Crawl Rate Tracker 'sbtracking-chart-data.php' SQL Injection (2.0.2)
MySQL CVE-2018-2781 Vulnerability (CVE-2018-2781)
WordPress Plugin Woocommerce CSV importer Arbitrary File Deletion (3.3.6)