Description

WordPress Plugin Windsor Strava Athlete is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Windsor Strava Athlete version 1.3.5 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.3.6 or latest

References

https://plugins.svn.wordpress.org/windsor-strava-athlete/trunk/README.txt

Related Vulnerabilities

WordPress Plugin Image Optimizer, Resizer and CDN-Sirv Arbitrary File Upload (7.2.6)

WordPress Plugin Woody ad snippets-Insert Header Footer Code, AdSense Ads Cross-Site Request Forgery (2.3.9)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-1834)

PHP Use of Externally-Controlled Format String Vulnerability (CVE-2015-8617)

WordPress Plugin Cimy User Manager 'cimy_um_filename' Parameter Arbitrary File Disclosure (1.4.2)

Severity

High

Tags

Missing Update