Description
WordPress Plugin DM Albums is prone to a remote file disclosure vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting the issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin DM Albums version 1.9.2 is vulnerable; other versions may also be affected.
Remediation
Update to the latest version
References
Related Vulnerabilities
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-15005)
WordPress Plugin Product Catalog Privilege Escalation (3.8.1)
Oracle HTTP Server CVE-2019-2751 Vulnerability (CVE-2019-2751)
WordPress Plugin Leaky Paywall Cross-Site Scripting (4.16.5)
WordPress Plugin GiveWP-Donation and Fundraising Platform SQL Injection (2.24.0)