Description

WordPress Plugin Custom Post Types and Custom Fields creator-WCK is prone to multiple unspecified vulnerabilities. No available information exists regarding these issues and their impact on a vulnerable website. WordPress Plugin Custom Post Types and Custom Fields creator-WCK version 1.2.9 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.3.0 or latest

References

https://wordpress.org/plugins/wck-custom-fields-and-custom-post-types-creator/changelog/

Related Vulnerabilities

WordPress Plugin Timesheet by BestWebSoft Cross-Site Scripting (0.1.4)

Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-6660)

Prototype CVE-2008-7220 Vulnerability (CVE-2008-7220)

Zenphoto Other Vulnerability (CVE-2006-2186)

WordPress Plugin Booking Calendar-Clockwork SMS Cross-Site Scripting (1.0.5)

Severity

High

Tags

Missing Update