Description
WordPress Plugin WP Server Health Stats contains malicous code. Exploiting this issue may allow an attacker to create a new administrative user account, thus compromising the affected application, and possibly the webserver or computer. WordPress Plugin WP Server Health Stats version 1.7.6 is affected.
Remediation
Update to plugin version 1.7.8 or latest
References
Related Vulnerabilities
WordPress Plugin WooCommerce Weight Based Shipping Cross-Site Request Forgery (5.4.1)
SharePoint CVE-2024-49070 Vulnerability (CVE-2024-49070)
WordPress Plugin File Manager Unspecified Vulnerability (4.1.4)
Envoy Proxy Use After Free Vulnerability (CVE-2023-35942)
WordPress 'press-this.php' Remote Security Bypass Vulnerability (0.7 - 3.1.1)