WordPress Plugin Backup by Supsystic is prone to a local file inclusion vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin Backup by Supsystic version 2.3.9 is vulnerable; prior versions may also be affected.
Update to plugin version 2.3.12 or latest
WordPress Plugin FPW Category Thumbnails Multiple Unspecified Vulnerabilities (1.6.7)
WordPress Plugin 3DPrint Lite Cross-Site Scripting (188.8.131.52)
WordPress Plugin User Role by BestWebSoft Cross-Site Scripting (1.5.5)
WordPress Plugin Z-Vote 'zvote' Parameter SQL Injection (1.1)
WordPress Plugin Time Sheets Multiple Cross-Site Scripting Vulnerabilities (1.5.1)