A popular plugin for WordPress called wordpress-flat-countdown has a security issue that allows hackers to gain more control than they should have. This can happen in any version of the plugin up to version 3.0. This means that someone who is already logged in and has at least Subscriber access can gain the same level of access as an administrator.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
