Description
WordPress Plugin Zedna Contact form is prone to a directory traversal vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin Zedna Contact form version 1.1 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.2 or latest
References
Related Vulnerabilities
WordPress Plugin Video Embed & Thumbnail Generator Information Disclosure (1.1)
WebLogic CVE-2021-2214 Vulnerability (CVE-2021-2214)
WordPress Plugin WP Mobile Menu-The Mobile-Friendly Responsive Menu Cross-Site Scripting (2.8.2.2)
WordPress Plugin WP Easy Stats 'homep' Parameter Remote File Include (1.8)
WordPress Plugin Front File Manager 'upload.php' Arbitrary File Upload (0.1)