Description
WordPress Plugin W3 Total Cache is prone to a backdoor vulnerability. Attackers can exploit this issue to execute arbitrary commands in the context of the application. Successful attacks will compromise the affected application and possibly the webserver or computer.
Remediation
Install version 0.9.2.3 downloaded after June 21st, 2011 or latest
References
Related Vulnerabilities
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-8669)
WordPress Plugin Newspack Blocks Arbitrary File Upload (3.0.8)
Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-5485)
WordPress Plugin YITH Pre-Order for WooCommerce Security Bypass (1.1.9)