Description
WordPress Plugin Form Store to DB [only if downloaded via the vendor website] contains suspicious code. Attackers can exploit this issue to perform a variety of actions. Successful attacks will compromise the affected application and possibly the webserver or computer. WordPress Plugin Form Store to DB version 1.0.9 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.1.0 or latest
References
Related Vulnerabilities
WordPress Plugin Customize Youtube Videos Multiple Vulnerabilities (0.2)
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-1460)
WordPress Plugin Contus HD FLV Player 'process-sortable.php' SQL Injection (1.3)
WordPress Plugin BulletProof Security Multiple Vulnerabilities (.51)
WordPress Plugin Live Scores for SportsPress Multiple Vulnerabilities (1.9.0)