Description
WordPress Plugin MyPixs is prone to a local file inclusion vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin MyPixs version 0.3 is vulnerable; prior versions are also affected.
Remediation
Edit the source code to ensure that input is properly verified or disable the plugin until a fix is available
References
Related Vulnerabilities
MediaWiki CVE-2017-8812 Vulnerability (CVE-2017-8812)
Dotclear Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2008-3232)
MySQL CVE-2013-1566 Vulnerability (CVE-2013-1566)
Apache HTTP Server Other Vulnerability (CVE-2002-2012)
WordPress Plugin Responsive Lightbox by dFactory Cross-Site Scripting (1.7.1)