Description
WordPress Plugin Cookie Notification for WordPress-WP Cookie User Info [only if downloaded via the vendor website] contains suspicious code. Attackers can exploit this issue to perform a variety of actions. Successful attacks will compromise the affected application and possibly the webserver or computer. WordPress Plugin Cookie Notification for WordPress-WP Cookie User Info version 1.0.7 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.0.8 or latest
References
Related Vulnerabilities
WordPress Plugin Salon Booking System Multiple Information Disclosure Vulnerabilities (7.6.2)
WordPress Plugin Rich Widget Arbitrary File Upload (0.2.4)
Oracle Database Server CVE-2010-0854 Vulnerability (CVE-2010-0854)
OpenSSL Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-3207)