Description
WordPress Plugin Sina Extension for Elementor is prone to a local file inclusion vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin Sina Extension for Elementor version 2.2.0 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.2.1 or latest
References
Related Vulnerabilities
Apache HTTP Server Other Vulnerability (CVE-2002-1850)
WordPress Plugin Limit Login Attempts Reloaded Cross-Site Scripting (2.7.0)
WordPress Plugin All-in-One Custom Backgrounds Lite Unspecified Vulnerability (2.0.2)
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4421)