Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in supsystic.Com Popup by Supsystic allows Relative Path Traversal.This issue affects Popup by Supsystic: from n/a up to and including 1.10.19.
Popup by Supsystic <= 1.10.19 - Missing Authorization to Sensitive Information Exposure
CVE-2023-46197
Popup by Supsystic <= 11019 - Missing Authorization to Sensitive Information Exposure
Description
"The Popup by Supsystic plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 11019 via the getWpCsvList action This makes it possible for authenticated attackers with subscriber level access or hi