Description

WordPress Plugin Ultimate TinyMCE is prone to multiple unspecified vulnerabilities. No available information exists regarding these issues and their impact on a vulnerable website. WordPress Plugin Ultimate TinyMCE version 5.0 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 5.1 or latest

References

https://wordpress.org/plugins/ultimate-tinymce/changelog/

Related Vulnerabilities

WordPress 4.7.x Multiple Vulnerabilities (4.7 - 4.7.5)

WordPress Plugin NextGEN Gallery-WordPress Gallery Arbitrary File Upload (1.9.12)

WordPress Plugin WP Mobile Edition Arbitrary File Disclosure (2.2.7)

WordPress Plugin Shortlinks by Pretty Links-Best WordPress Link Tracking Cross-Site Scripting (1.6.0)

WordPress Plugin Search Engine Unspecified Vulnerability (0.5.8)

Severity

High

Tags

Missing Update