Description

WordPress Plugin OnePress Social Locker is prone to multiple unspecified vulnerabilities. No available information exists regarding these issues and their impact on a vulnerable website. WordPress Plugin OnePress Social Locker version 4.2.5 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 4.2.6 or latest

References

https://wordpress.org/plugins/social-locker/changelog/

Related Vulnerabilities

WordPress Plugin Flexible Custom Post Type Cross-Site Scripting (0.1.5)

Atlassian Confluence Missing Authorization Vulnerability (CVE-2021-26085)

Microsoft SQL Server CVE-2023-23384 Vulnerability (CVE-2023-23384)

WordPress Plugin AccessPress iFeeds includes Backdoor [Only if downloaded via the vendor website] (4.0.3)

EspoCRM Server-Side Request Forgery (SSRF) Vulnerability (CVE-2023-46736)

Severity

High

Tags

Missing Update