Description

WordPress Plugin Staff Directory-Employee Directory for WordPress is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Staff Directory-Employee Directory for WordPress version 3.6.1 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 3.6.2 or latest

References

https://plugins.svn.wordpress.org/employee-directory/trunk/readme.txt

Related Vulnerabilities

Perl Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-4330)

WordPress Plugin WordPress Ad Widget Local File Inclusion (2.11.0)

phpMyFAQ Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2010-4558)

WordPress Plugin AP Companion includes Backdoor [Only if downloaded via the vendor website] (1.0.6)

Magento CVE-2019-8136 Vulnerability (CVE-2019-8136)

Severity

High

Tags

Missing Update