Description
WordPress Plugin WordPress Mobile Pack is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. WordPress Plugin WordPress Mobile Pack version 2.0.1 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.0.2 or latest
References
http://seclists.org/fulldisclosure/2014/Aug/54
http://packetstormsecurity.com/files/127949/WordPress-Mobile-Pack-2.0.1-Information-Disclosure.html
Related Vulnerabilities
WordPress Plugin WP e-Commerce Shop Styling Arbitrary File Download (2.5)
MySQL CVE-2020-2930 Vulnerability (CVE-2020-2930)
Nginx Out-of-bounds Write Vulnerability (CVE-2013-2028)
WordPress Plugin Imagements Arbitrary File Upload (1.2.5)
OpenSSL Resource Management Errors Vulnerability (CVE-2014-3506)