The FIFU plugin for WordPress is at risk for a kind of hacking called Stored Cross-Site Scripting. This happens because the plugin does not properly check the information that is put into it, and does not protect against harmful code being added. This means that someone who has permission to use the plugin can add harmful code that will run when someone else visits the page.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
