pub/sns.php in the W3 Total Cache plugin prior to 0.9.4 for WordPress allows remote malicious users to read arbitrary files via the SubscribeURL field in SubscriptionConfirmation JSON data.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
boldgrid w3 total cache |