Description
WordPress Plugin wp-publications is prone to a local file inclusion vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin wp-publications version 0.0 is vulnerable.
Remediation
Disable and remove the plugin until a fix is available
References
Related Vulnerabilities
WordPress Plugin AccessPress Social Icons Cross-Site Scripting (1.6.6)
WordPress Plugin Uploader Cross-Site Scripting and Arbitrary File Upload Vulnerabilities (1.0.4)
Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0050)
WordPress Plugin 0mk Shortener Cross-Site Request Forgery (0.2)