Description
WordPress Plugin Ultimate TinyMCE is prone to multiple unspecified vulnerabilities. No available information exists regarding these issues and their impact on a vulnerable website. WordPress Plugin Ultimate TinyMCE version 5.0 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 5.1 or latest
References
Related Vulnerabilities
WordPress Plugin Processing Embed 'pluginurl' Parameter Cross-Site Scripting (0.5)
RubyGems Cryptographic Issues Vulnerability (CVE-2012-2126)
WordPress Plugin Count per Day Search Bar Cross-Site Scripting (3.2.2)
Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-5540)