Description
WordPress Plugin Mailster-Email Newsletter for WordPress is prone to a local file inclusion vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin Mailster-Email Newsletter for WordPress version 4.0.6 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 4.0.7 or latest
References
Related Vulnerabilities
WordPress Plugin wpCommentTwit Cross-Site Request Forgery (0.5)
GlassFish CVE-2012-0551 Vulnerability (CVE-2012-0551)
WordPress 4.2.x Multiple Vulnerabilities (4.2 - 4.2.36)
Squid Resource Management Errors Vulnerability (CVE-2011-4096)
Lighttpd Uncontrolled Resource Consumption Vulnerability (CVE-2022-30780)