WordPress Plugin WP Docs is prone to multiple vulnerabilities, including PHP object injection and cross-site request forgery vulnerabilities. A successful exploit may allow an attacker to execute arbitrary PHP code within the context of the affected webserver process or to perform certain administrative actions; other attacks are also possible. WordPress Plugin WP Docs version 1.1.7 is vulnerable; prior versions may also be affected.
Update to plugin version 1.1.8 or latest
WordPress Plugin WordPress Filter Gallery Cross-Site Scripting (0.1.5)
WordPress 4.0.x Cross-Site Request Forgery (4.0 - 4.0.25)
WordPress Plugin Post SMTP Mailer/Email Log Cross-Site Scripting (2.1.3)
WordPress Plugin YITH Advanced Refund System for WooCommerce Security Bypass (1.0.10)
WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (6.1.6)