Description

WordPress Plugin User Avatar is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin User Avatar version 1.4.6 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.4.7 or latest

References

https://wordpress.org/plugins/user-avatar/changelog/

Related Vulnerabilities

WordPress Plugin FormGet Contact Form Cross-Site Scripting (5.3)

WebLogic CVE-2020-2829 Vulnerability (CVE-2020-2829)

WordPress Plugin iThemes Sync Security Bypass (2.0.17)

WordPress Plugin One User Avatar-User Profile Picture Multiple Vulnerabilities (2.3.6)

Joomla! Core 1.6.x Cross-Site Scripting (1.6.0 - 1.6.3)

Severity

High

Tags

Missing Update