Description
WordPress Plugin Social Sticky Animated contains a backdoor. Attackers can exploit this issue to execute arbitrary commands in the context of the application. Successful attacks will compromise the affected application and possibly the webserver or computer. WordPress Plugin Social Sticky Animated version 1.0 is vulnerable.
Remediation
Disable the plugin until a fix is available
References
Related Vulnerabilities
Joomla! Core 3.x.x Multiple Cross-Site Scripting Vulnerabilities (3.0.0 - 3.9.3)
WordPress Plugin Nextend Facebook Connect Cross-Site Scripting (1.5.0)
Oracle JRE CVE-2012-1532 Vulnerability (CVE-2012-1532)
WordPress Plugin WP Construction Mode Cross-Site Request Forgery (3.31)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-2272)