EPSS
Percentile
71.1%
This vulnerability is in the wp-php-widget.php. It allows the attackers to obtain sensitive information via a direct request, which reveals the full path in an error message.
Update the plugin.
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0721