CVE-2014-10394

Name of the Vulnerable Software and Affected Versions rich-counter plugin versions prior to 1.2.0 for WordPress

Description The issue concerns JavaScript injection via a User-Agent header. This allows for malicious code execution. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For rich-counter plugin versions prior to 1.2.0, update to version 1.2.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the plugin until the update is applied.