WordPress Plugin WP Rocket Local File Inclusion (2.10.3)

Description
  • WordPress Plugin WP Rocket is prone to a local file inclusion vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin WP Rocket version 2.10.3 is vulnerable; prior versions may also be affected.
Remediation
  • Update to plugin version 2.10.4 or latest
References