Description
WordPress Plugin MyPixs is prone to a local file inclusion vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin MyPixs version 0.3 is vulnerable; prior versions are also affected.
Remediation
Edit the source code to ensure that input is properly verified or disable the plugin until a fix is available
References
Related Vulnerabilities
WordPress Plugin Ultimate Member-User Profile & Membership Open Redirect (2.1.6)
WordPress Plugin HK Exif Tags Cross-Site Scripting (1.11)
WordPress Plugin WpPygments Multiple Cross-Site Scripting Vulnerabilities (0.3.2)
WordPress Plugin Social Icons WordPress Plugin-AccessPress Social Icons Cross-Site Scripting (1.6.6)
WordPress Plugin Comment Rating 'path' Parameter Cross-Site Scripting (2.9.20)