Wordfence! Publishes Security Updates for WordPress plugin
Description: PHP Object Injection Vulnerability Severity 9.8 (Critical) have been found in Appointments, RegistrationMagic-Custom Registration Forms, and Flickr Gallery plugins. Affected plugins and versions:
- Appointments by WPMU Dev (fixed in 2.2.2)
- Flickr Gallery by Dan Coulter (fixed in 1.5.3)
- RegistrationMagic-Custom Registration Forms by CMSHelpLive (fixed in 220.127.116.11)
Impact: Exploitation of one of these vulnerabilities may allow a remote attacker to take control of an affected system.
Mitigation: Updates are available. Please check specific vendor advisory for more information.