logo
DATABASE RESOURCES PRICING ABOUT US

Include Me <= 1.2.1 - Authenticated Remote Code Execution (RCE) via LFI log poisoning

Description

The plugin is vulnerable to path traversal / local file inclusion, which can lead to Remote Code Execution (RCE) of the system due to log poisoning and therefore potentially a full compromise of the underlying structure


Related