Description
Insufficient sanitizing in backup resulted in an arbitrary file read risk. The capability to access this feature is only available to teachers, managers and admins by default.
Remediation
References
Related Vulnerabilities
WordPress Plugin Subscriptions & Memberships for PayPal Unspecified Vulnerability (1.1.5)
PHP CVE-2008-2051 Vulnerability (CVE-2008-2051)
WordPress Plugin Mingle Forum Multiple Cross-Site Request Forgery Vulnerabilities (1.0.34)
WordPress Plugin WP Mail Logging Cross-Site Scripting (1.11.1)
WordPress Plugin YITH Color and Label Variations for WooCommerce Security Bypass (1.8.11)