Description
WordPress Plugin Ultimate TinyMCE is prone to multiple unspecified vulnerabilities. No available information exists regarding these issues and their impact on a vulnerable website. WordPress Plugin Ultimate TinyMCE version 5.0 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 5.1 or latest
References
Related Vulnerabilities
WordPress Plugin Social Sharing-Sassy Social Share PHP Object Injection (3.3.23)
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-15005)
WordPress Plugin Sell Downloads Cross-Site Scripting (1.0.86)
WordPress Plugin Secure HTML5 Video Player Cross-Site Scripting (3.14)