WordPress Sniplets Plugin <= 1.2.2 - Remote File Inclusion

Because of this vulnerability in modules/syntax_highlight.php, the attackers can execute arbitrary PHP code via a URL in the “libpath” parameter.

Solution

           Update the plugin.