Description

WordPress Plugin Sidekick is prone to multiple unspecified vulnerabilities. No available information exists regarding these issues and their impact on a vulnerable website. WordPress Plugin Sidekick version 2.2.1 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 2.2.2 or latest

References

https://wordpress.org/plugins/sidekick/changelog/

Related Vulnerabilities

Phusion Passenger Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2018-12028)

WordPress Plugin Mobile blocks Security Bypass (1.0)

WordPress Plugin Database for Contact Form 7, WPforms, Elementor forms Cross-Site Scripting (1.3.8)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3390)

Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2009-1891)

Severity

High

Tags

Missing Update