Description
WordPress Plugin Woody ad snippets-Insert Header Footer Code, AdSense Ads is prone to a vulnerability that lets attackers inject and execute arbitrary code because the application fails to sanitize user-supplied input. Attackers can exploit this issue to execute arbitrary PHP code within the context of the affected webserver process. WordPress Plugin Woody ad snippets-Insert Header Footer Code, AdSense Ads version 1.3 is vulnerable; prior versions may also be affected.
Remediation
Disable the plugin until a fix is available
References
Related Vulnerabilities
WordPress Multiple Cross-Site Scripting Vulnerabilities (1.2 - 1.2.1)
Java Denial of Service (DoS) Vulnerability (CVE-2018-3180)
Java Code Execution Vulnerability (CVE-2019-2745)
MySQL CVE-2015-4800 Vulnerability (CVE-2015-4800)
phpMyFAQ Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2018-16651)