Description

WordPress Plugin WP Doctor contains potential malicous code. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks, to gain access or to execute arbitrary commands and compromise the affected application, and possibly the webserver or computer; other attacks are also possible. WordPress Plugin WP Doctor version 1.7 is affected; prior versions may also be affected.

Remediation

Disable the plugin until a fix is available

References

Related Vulnerabilities