Description
WordPress Plugin Responsive Clients Logo Gallery for WordPress-Smart Logo Showcase Lite [only if downloaded via the vendor website] contains suspicious code. Attackers can exploit this issue to perform a variety of actions. Successful attacks will compromise the affected application and possibly the webserver or computer. WordPress Plugin Responsive Clients Logo Gallery for WordPress-Smart Logo Showcase Lite version 1.1.7 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.1.8 or latest
References
Related Vulnerabilities
WordPress Plugin Database for Contact Form 7, WPforms, Elementor forms Cross-Site Scripting (1.2.0)
WordPress Plugin Easy PayPal Buy Now Button Multiple Vulnerabilities (1.7.2)
WordPress Plugin Ibtana-Ecommerce Product Addons Cross-Site Scripting (0.2.3)
WordPress Plugin WP Reset-Most Advanced WordPress Reset Tool Cross-Site Scripting (1.86)
WordPress Plugin Content Audit Multiple Vulnerabilities (1.9.1)