Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Smart Scroll Posts for WordPress includes Backdoor Only if downloaded via the vendor website - CVE-2021-24867 - Vulnerability Database
WP Plugin Smart Scroll Posts

WordPress Plugin Smart Scroll Posts for WordPress includes Backdoor Only if downloaded via the vendor website - CVE-2021-24867

Critical
Reference: CVE-2021-24867
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-24867
Title: WordPress Plugin Smart Scroll Posts for WordPress includes Backdoor Only if downloaded via the vendor website
Overview:

WordPress Plugin Smart Scroll Posts for WordPress only if downloaded via the vendor website contains suspicious code. Attackers can exploit this issue to perform a variety of actions. Successful attacks will compromise the affected application and possibly the webserver or computer. WordPress Plugin Smart Scroll Posts for WordPress version 2.0.8 is vulnerable prior versions may also be affected.