Description
WordPress Plugin WP AmASIN-The Amazon Affiliate Shop is prone to a directory traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin WP AmASIN-The Amazon Affiliate Shop version 0.9.6 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 0.9.7 or latest
References
Related Vulnerabilities
WordPress Plugin Automated Editor Cross-Site Scripting (1.3)
WordPress Plugin Mingle Forum Multiple Vulnerabilities (1.0.33.3)
WordPress Plugin Ultimate Addons for Beaver Builder Cross-Site Scripting (1.24.3)
WordPress 4.8.x Multiple Vulnerabilities (4.8 - 4.8.5)
WordPress Plugin Disqus Comment System Multiple Vulnerabilities (2.75)