Description
WordPress Plugin Social Discussions is prone to a remote file include vulnerability and an information disclosure vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting these issues could allow an attacker to compromise the application and the underlying system or to obtain sensitive information which may help in launching further attacks. WordPress Plugin Social Discussions version 6.1.1 is vulnerable; other versions may also be affected.
Remediation
Update to plugin version 6.1.2 or latest
References
http://www.securityfocus.com/bid/56091/exploit
http://www.exploit-db.com/exploits/22158/
Related Vulnerabilities
Oracle JRE CVE-2012-1532 Vulnerability (CVE-2012-1532)
WordPress Plugin SyntaxHighlighter Evolved Cross-Site Scripting (3.1.5)
Python Integer Overflow or Wraparound Vulnerability (CVE-2010-1449)
WordPress Plugin Yoast SEO Unspecified Vulnerability (5.9.2)
WordPress Plugin WP Human Resource Management Security Bypass (2.2.5)