Description
WordPress Plugin Landing Page Builder-Lead Page-Optin Page-Squeeze Page-WordPress Landing Pages is prone to a local file inclusion vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin Landing Page Builder-Lead Page-Optin Page-Squeeze Page-WordPress Landing Pages version 1.4.3 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.4.4 or latest
References
Related Vulnerabilities
Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-1598)
WordPress Plugin Welcart e-Commerce Multiple Vulnerabilities (1.3.12)
WordPress 5.5.x Multiple Vulnerabilities (5.5 - 5.5.3)
Oracle JRE CVE-2012-0547 Vulnerability (CVE-2012-0547)
WordPress Plugin GigPress Multiple SQL Injection Vulnerabilities (2.3.8)