EPSS
Percentile
89.3%
The plugin does not validate user input used in a path, which could allow unauthenticated users to read arbitrary files via a traversal attack