Description
Local file inclusion vulnerability in Zenphoto 1.4.14 and earlier allows a remote attacker with an administrative privilege to execute arbitrary code or obtain sensitive information.
Remediation
References
Related Vulnerabilities
WordPress Plugin Easy Testimonials Cross-Site Scripting (3.5.2)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-25703)
e107 Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-2020)
WordPress Plugin Directories Pro Cross-Site Scripting (1.3.45)