Description
WordPress Plugin gboutique is prone to a local file inclusion vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin gboutique version 1.3 is vulnerable; prior versions may also be affected.
Remediation
Disable the plugin until a fix is available
References
Related Vulnerabilities
Drupal Core 6.x Security Bypass (6.0 - 6.1)
WordPress Plugin JupiterX Core Privilege Escalation (2.0.7)
WordPress Plugin Simple Retail Menus SQL Injection (4.0.1)
WordPress Plugin Custom Login Page Customizer-LoginPress Unspecified Vulnerability (1.1.15)
WordPress Plugin Google Map Generator Cross-Site Scripting (1.3.1)