Description
WordPress Plugin WP Doctor contains potential malicous code. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks, to gain access or to execute arbitrary commands and compromise the affected application, and possibly the webserver or computer; other attacks are also possible. WordPress Plugin WP Doctor version 1.7 is affected; prior versions may also be affected.
Remediation
Disable the plugin until a fix is available
References
Related Vulnerabilities
Jboss EAP Improper Input Validation Vulnerability (CVE-2011-4575)
Oracle Application Server Permissions, Privileges, and Access Controls Vulnerability (CVE-2001-1371)
MySQL CVE-2016-5631 Vulnerability (CVE-2016-5631)
MySQL CVE-2022-21637 Vulnerability (CVE-2022-21637)
Moodle URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-3850)