Description

WordPress Plugin Payment Gateways Caller for WP e-Commerce is prone to a local file inclusion vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin Payment Gateways Caller for WP e-Commerce version 0.1 is vulnerable.

Remediation

Update to plugin version 0.1.1 or latest

References

Related Vulnerabilities