Description

WordPress Plugin Widgets for SiteOrigin is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Widgets for SiteOrigin version 1.4.4 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.4.5 or latest

References

https://plugins.svn.wordpress.org/widgets-for-siteorigin/trunk/readme.txt

Related Vulnerabilities

WordPress Plugin NextScripts:Social Networks Auto-Poster Cross-Site Scripting (4.3.23)

WordPress Plugin Email newsletter 'option' Parameter Information Disclosure (8.0)

MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-45038)

Jenkins Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-3664)

WordPress Plugin WordPress Calls to Action Multiple Cross-Site Scripting Vulnerabilities (2.5.0)

Severity

High

Tags

Missing Update