Description
WordPress Plugin WP Docs is prone to multiple vulnerabilities, including PHP object injection and cross-site request forgery vulnerabilities. A successful exploit may allow an attacker to execute arbitrary PHP code within the context of the affected webserver process or to perform certain administrative actions; other attacks are also possible. WordPress Plugin WP Docs version 1.1.7 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.1.8 or latest
References
Related Vulnerabilities
WordPress Plugin Oi Yandex.Maps for WordPress Cross-Site Scripting (3.2.7)
ownCloud Resource Management Errors Vulnerability (CVE-2015-6500)
WordPress Plugin Jock on air now Multiple Vulnerabilities (5.6.1)
WordPress Plugin WordPoints Multiple Vulnerabilities (1.7.0)
WordPress Plugin ByREV WP-PICShield Cross-Site Request Forgery (1.9.7)