Description
WordPress Plugin WP Source Control is prone to a directory traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin WP Source Control version 3.0.0 is vulnerable; other versions may also be affected.
Remediation
Update to plugin version 3.1.1 or latest
References
http://www.openwall.com/lists/oss-security/2014/08/19/3
Related Vulnerabilities
WordPress Plugin Fancy Comments WordPress Cross-Site Scripting (1.2.10)
Joomla Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-15882)
WordPress Plugin Asgaros Forum Multiple SQL Injection Vulnerabilities (1.15.12)
WordPress Plugin Gravity Forms Infusionsoft Cross-Site Scripting (1.1.4)
WordPress Plugin Jock on air now Multiple Vulnerabilities (5.6.1)