Description
Local file inclusion vulnerability in Zenphoto 1.4.14 and earlier allows a remote attacker with an administrative privilege to execute arbitrary code or obtain sensitive information.
Remediation
References
Related Vulnerabilities
WordPress Plugin Menu Image Malware/Addware Notification (2.6.9)
WordPress Plugin Child Theme Creator by Orbisius Arbitrary File Modification (1.2.6)
WordPress Plugin WordPoints Multiple Vulnerabilities (1.10.2)
WordPress Plugin BuddyPress Multiple Vulnerabilities (5.1.2)
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2024-38023)