Description
WordPress Plugin WP Fastest Cache is prone to a directory traversal vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin WP Fastest Cache version 0.9.1.6 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 0.9.1.7 or latest
References
https://jvn.jp/en/jp/JVN35240327/index.html
https://plugins.svn.wordpress.org/wp-fastest-cache/trunk/readme.txt
Related Vulnerabilities
phpList Incorrect Comparison Vulnerability (CVE-2020-23361)
WordPress Plugin Aspose DOC Exporter Arbitrary File Download (1.0)
WordPress Plugin The Crawl Rate Tracker 'sbtracking-chart-data.php' SQL Injection (2.0.2)
SugarCRM Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-17301)