The plugin called “Head, Footer and Post Injections” used for WordPress has a weakness that allows for something called “PHP Code Injection” to occur. This can happen in any version of the plugin up to version 3.3.0. This vulnerability can be exploited by someone who has been given special access to the site, such as an administrator, and can affect multiple sites at once.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
