Description

WordPress Plugin WP Flow Plus is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin WP Flow Plus version 2.2.0 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 2.2.1 or latest

References

https://wordpress.org/plugins/wp-imageflow2/changelog/

Related Vulnerabilities

WordPress Plugin GiveWP-Donation and Fundraising Platform Cross-Site Scripting (2.3.0)

Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42119)

WordPress Plugin Chronoforms Cross-Site Request Forgery (7.0.9)

WordPress Plugin WooCommerce OpenPOS SQL Injection (6.4.4)

PHP POST file upload buffer overflow vulnerabilities

Severity

High

Tags

Missing Update