Description
WordPress Plugin One User Avatar-User Profile Picture is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin One User Avatar-User Profile Picture version 2.3.8 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.3.9 or latest
References
Related Vulnerabilities
WordPress Plugin Compact WP Audio Player Cross-Site Scripting (1.9.7)
PrestaShop Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2011-4545)
WordPress Plugin Kama Click Counter Cross-Site Scripting (3.4.9)
Atlassian Confluence Server-Side Request Forgery (SSRF) Vulnerability (CVE-2020-29445)
Apache Tomcat Improper Certificate Validation Vulnerability (CVE-2018-8034)