Description
WordPress Plugin Count per Day is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. WordPress Plugin Count per Day version 3.2.5 is vulnerable; prior versions may also be affected.
Remediation
Update to the latest version
References
http://seclists.org/fulldisclosure/2013/Mar/43
http://packetstormsecurity.com/files/120631/WordPress-Counter-Per-Day-3.2.3-Path-Disclosure.html
Related Vulnerabilities
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5473)
WordPress Plugin Twitter Cards Meta Multiple Vulnerabilities (2.4.5)
Apache Tomcat Improper Input Validation Vulnerability (CVE-2013-4286)
Dotclear Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2016-9268)
Joomla Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2022-23794)