CVE-2018-5287
CVE-2018-5287 affects the WordPress GD Rating System plugin, version 2.3. A directory traversal flaw exists in the wp-admin/admin.php parameter for the gd-rating-system-about page, enabling an attacker to read arbitrary files on the server. Public CVSS metrics show base scores of 5.0 (NVD CVSS2) ...