Description

WordPress Plugin WP Flow Plus is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin WP Flow Plus version 2.2.0 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 2.2.1 or latest

References

https://wordpress.org/plugins/wp-imageflow2/changelog/

Related Vulnerabilities

e107 Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-16388)

MySQL CVE-2019-2632 Vulnerability (CVE-2019-2632)

WordPress 5.9.x Multiple Vulnerabilities (5.9 - 5.9.5)

Oracle HTTP Server CVE-2016-0671 Vulnerability (CVE-2016-0671)

WordPress Plugin I Recommend This SQL Injection (3.7.2)

Severity

High

Tags

Missing Update