Sensitive File Disclosure vulnerability discovered by Viktor Markopoulos in WordPress SP Project & Document Manager plugin (versions <= 4.57).
Update the WordPress SP Project & Document Manager plugin to the latest available version (at least 4.58).