Description
WordPress Plugin Really Simple Guest Post is prone to a local file inclusion vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin Really Simple Guest Post version 1.0.6 is vulnerable; prior versions are also affected.
Remediation
Update to plugin version 1.0.7 or latest
References
Related Vulnerabilities
WordPress Plugin Welcart e-Commerce SQL Injection (2.0.0)
Joomla! Core 1.7.x Information Disclosure (1.7.0 - 1.7.4)
WordPress Plugin DiveBook Multiple Vulnerabilities (1.1.4)
WordPress Plugin WPUpper Share Buttons Cross-Site Scripting (3.42)
WordPress Plugin LearnPress-WordPress LMS SQL Injection (3.2.6.7)