Description
WordPress Plugin Thinkun Remind is prone to an information disclosure vulnerability because it fails to properly sanitize user-supplied input. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. WordPress Plugin Thinkun Remind version 1.1.3 is vulnerable; prior versions may also be affected.
Remediation
Edit the source code to ensure that input is properly verified or disable the plugin until a fix is available
References
http://www.exploit-db.com/exploits/19021/
http://1337day.com/exploits/18492
http://packetstormsecurity.com/files/113416/WordPress-Thinkun-Remind-1.1.3-File-Disclosure.html
Related Vulnerabilities
WordPress Plugin LOGIN AND REGISTRATION ATTEMPTS LIMIT Cross-Site Request Forgery (2.1)
WordPress Plugin Easy Affiliate Links Cross-Site Scripting (3.7.0)
WordPress Plugin CSS & JavaScript Toolbox SQL Injection (9.2)
WordPress Plugin WP jPlayer Cross-Site Scripting (0.1)
WordPress Plugin CoolClock-a Javascript Analog Clock Cross-Site Scripting (4.3.4)