Description
WordPress Plugin WP Source Control is prone to a directory traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin WP Source Control version 3.0.0 is vulnerable; other versions may also be affected.
Remediation
Update to plugin version 3.1.1 or latest
References
http://www.openwall.com/lists/oss-security/2014/08/19/3
Related Vulnerabilities
PHP 4.3.0 file disclosure and possible code execution
PHP CVE-2004-1063 Vulnerability (CVE-2004-1063)
Microsoft SQL Server CVE-2023-36417 Vulnerability (CVE-2023-36417)
WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.9.51)
WordPress Plugin Complete Gallery Manager for WordPress Arbitrary File Upload (3.3.3)