Description
pub/sns.php in the W3 Total Cache plugin before 0.9.4 for WordPress allows remote attackers to read arbitrary files via the SubscribeURL field in SubscriptionConfirmation JSON data.
Remediation
References
Related Vulnerabilities
Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5652)
WordPress Plugin WooCommerce PHP Object Injection (3.2.3)
WordPress Plugin Tabs Cross-Site Scripting (1.8.0)
WordPress Plugin Newsletter Open Redirect (2.6.4.4)
WordPress Plugin WordPress Affiliates-SliceWP Cross-Site Scripting (1.0.45)