Description
WordPress Plugin AWSM Team-Team Showcase is prone to a local file inclusion vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin AWSM Team-Team Showcase version 1.3.1 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.3.2 or latest
References
Related Vulnerabilities
WordPress Plugin uTubeVideo Gallery Cross-Site Scripting (2.0.7)
LimeSurvey Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-5573)
WordPress Plugin Request For Quote Cross-Site Request Forgery (1.2)
WordPress 5.7 Multiple Vulnerabilities (5.7)
WordPress Plugin BuddyStream Multiple Cross-Site Scripting Vulnerabilities (2.6.2)