Description

WordPress Plugin Shortcodes Ultimate is prone to a directory traversal vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin Shortcodes Ultimate version 4.9.9 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 4.10.0 or latest

References

Related Vulnerabilities