• WordPress Plugin MP3-jPlayer is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. WordPress Plugin MP3-jPlayer version 2.3.2 is vulnerable; prior versions may also be affected.

• Update to plugin version 2.3.3 or latest

• • http://www.vapidlabs.com/advisory.php?v=149
  • https://packetstormsecurity.com/files/132984/WordPress-MP3-jPlayer-2.3.2-Path-Disclosure.html

• 

• CVE-2015-1000008

• CWE-200

• CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

• Missing Update Information Disclosure

• WordPress Plugin Simple Login Log SQL Injection (1.1.1)
• WordPress Plugin Connections Business Directory Cross-Site Scripting (8.5.8)
• WordPress Plugin MainWP Child Security Bypass (3.4.4)
• WordPress Plugin HDW Player (Video Player & Video Gallery) SQL Injection (2.4.2)
• WordPress Plugin Community Events SQL Injection (1.3.5)