Description
WordPress Plugin Subscribe to Comments is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may lead to further attacks. WordPress Plugin Subscribe to Comments versions prior to 2.0.4 are vulnerable.
Remediation
Update to plugin version 2.0.4 or latest
References
Related Vulnerabilities
WordPress Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2020-11027)
phpMyAdmin CVE-2013-3238 Vulnerability (CVE-2013-3238)
WordPress Plugin WP Mailto Links-Manage Email Links Cross-Site Scripting (2.0.1)
WordPress Plugin Aspose DOC Exporter Arbitrary File Download (1.0)
WordPress Plugin MathJax-LaTeX Cross-Site Request Forgery (1.1)