# Exploit Title: WordPress Plugin Localize My Post 10 - Local File Inclusion
# Author: Manuel Garcia Cardenas
# Date: 2018-09-19
# Software link: eswordpressorg/plugins/localize-my-post/
# CVE: 2018-16299
# DESCRIPTION
# This bug was found in the file: /localize-my-post/ajax/includephp
# include($_REQUEST['file']);
# The parameter "fil ...
<!--X-Body-Begin-->
<!--X-User-Header-->
Full Disclosure
mailing list archives
<!--X-User-Header-End-->
<!--X-TopPNI-->
By Date
By Thread
</form>
<!--X-TopPNI-End-->
<!--X-MsgBody-->
<!--X-Subject-Header-Begin-->
WordPress Plugin Localize My Post 10 - Local File Inclusion
<!--X-Subject-Header-End-->
<!--X-Head-of-Message-->
Fr ...