Posted by MustLive on May 23
Hello list!
I want to warn you about Full path disclosure and Cross-Site Scripting
vulnerabilities in plugin Easy Contact for WordPress.
————————-
Affected products:
————————-
Vulnerable are Easy Contact 0.1.2 and previous versions.
———-
Details:
———-
Full path disclosure (WASC-13):
http://site/wp-content/plugins/easy-contact/econtact.php…
Source: FPD and XSS vulnerabilities in Easy Contact for WordPress