CVSS Base Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Detection Type: Remote Banner
Solution Type: Vendor Patch
Summary: The WordPress plugin OptionTree is prone to an Object Injection vulnerability.
Detection Method: Checks if a vulnerable version is present on the target host.
Technical Details: The vulnerability is exploitable by leveraging a valid nonce.
Impact: Successful exploitation would allow an attacker to
execute arbitrary code on the target machine.
Affected Versions: WordPress OptionTree plugin through version 2.6.0.
Recommendations: Update to version 2.7.0 or later.
Web application abuses
Mageni can help you to find out if you have this or more vulnerabilities exposing you to hackers, ransomware and malware: Download Mageni's Free Edition
Foxit Studio Photo Version Detection (Windows)
Debian LTS Advisory ([SECURITY] [DLA 1955-1] tcpdump security update)
Debian LTS Advisory ([SECURITY] [DLA 1956-1] ruby-openid security update)
Fedora Update for SDL2 FEDORA-2019-8ef33a69ca
Fedora Update for krb5 FEDORA-2019-dc4e1d0fb6
openSUSE Update for the openSUSE-SU-2019:2307-1 (the)
Ubuntu Update for octavia USN-4153-1
Debian LTS Advisory ([SECURITY] [DLA 1954-1] lucene-solr security update)
Debian LTS Advisory ([SECURITY] [DLA 1953-1] clamav security update)
Microsoft Windows Multiple Vulnerabilities (KB4519338)
Mageni provides a free vulnerability scanning and management platform which helps you need to find, prioritize, remediate and manage your vulnerabilities.