Description
WordPress Plugin JupiterX Core is prone to multiple vulnerabilities, including information disclosure and denial of service vulnerabilities. Exploiting these issues could allow an attacker to obtain sensitive information that may help in launching further attacks, or to cause the affected website to consume memory and CPU resources, thus denying service to legitimate users. WordPress Plugin JupiterX Core version 2.0.6 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.0.7 or latest
References
Related Vulnerabilities
MediaWiki Improper Encoding or Escaping of Output Vulnerability (CVE-2020-35475)
MySQL CVE-2019-2531 Vulnerability (CVE-2019-2531)
Internet Information Services Improper Input Validation Vulnerability (CVE-1999-0867)
WordPress Plugin Gallery-Flagallery Photo Portfolio Multiple Vulnerabilities (2.00)