Full Path Disclosure Vulnerability in Simple File List
Hackers were recently probing for usage of the WordPress plugin Simple File List. While looking into a security change made in the latest version of the plugin, we found that as of the previous version, there was a full path disclosure vulnerability in the plugin. That type of vulnerability displays the full path of the file system of the website. That information can sometimes be combined with another vulnerability or it could disclose server usernames.
…