Description
WordPress Plugin myEASYbackup is prone to a directory traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin myEASYbackup version 1.0.8.1 is vulnerable; other versions may also be affected.
Remediation
Update to plugin version 1.0.9 or latest
References
Related Vulnerabilities
WordPress Plugin Job Board Vanila Cross-Site Scripting (1.0)
WordPress Plugin Live Chat Unlimited Cross-Site Scripting (2.8.3)
WordPress Plugin Social Media Widget Serving Spam (4.0)
WordPress 4.4.x Cross-Domain Flash Injection Vulnerability (4.4 - 4.4.13)
WordPress Plugin WP Unique Article Header Image Cross-Site Request Forgery (1.0)